SECTRLOG parameter: Difference between revisions

From m204wiki
Jump to navigation Jump to search
(Automatically generated page update)
 
(8 intermediate revisions by 4 users not shown)
Line 1: Line 1:
{{Template:SECTRLOG parameter subtitle}}
==Summary==
==Summary==
<dl>
<dl>
Line 10: Line 11:
<dd>All
<dd>All
<dt>Introduced
<dt>Introduced
<dd><var class="product">Model 204 V6.1</var> or earlier
<dd><var class="product">Model 204 V3.2</var>  
</dl>
</dl>
==Description==
==Description==
<p>The CRAM thread applications for which logins are trusted</p>
<p>
<p>SECTRLOG defines which CRAM thread applications are allowed to log in with a trusted user ID. The CRAM threads that can have trusted login applications are:</p>
The CRAM thread applications for which logins are trusted</p>
<p>IODEV 11 (CRFSCHNL) </p>
<p>
<p>IODEV 29 (CRIOCHNL) </p>
<var>SECTRLOG</var> defines which CRAM thread applications are allowed to log in with a trusted user ID. The CRAM threads that can have trusted login applications are:</p>
<p>IODEV 23 (IFAMCHNL)</p>
<p>IODEV 11 (<var>[[CRFSCHNL_parameter|CRFSCHNL]]</var>) </p>
<p>SECTRLOG must be set on the first IODEV line for each trusted CRAM thread so it is picked up during the initialization of each CRAM channel. End users must follow the trusted login procedures described in the <i><var class="product">Model&nbsp;204</var> Security Interfaces Manual</i>.</p>
<p>IODEV 29 (<var>[[CRIOCHNL_parameter|CRIOCHNL]]</var>) </p>
<p>Valid settings of SECTRLOG are (except for X'00', options can be summed): </p>
<p>IODEV 23 (<var>[[IFAMCHNL_parameter|IFAMCHNL]]</var>)</p>
<p>
<var>SECTRLOG</var> must be set on the first <var>[[IODEV_parameter|IODEV]]</var> line for each trusted CRAM thread so it is picked up during the initialization of each CRAM channel. End users must follow the trusted login procedures described in the [[:Category:Security interfaces|Security interfaces]] pages.</p>
<p>
Valid settings of <var>SECTRLOG</var> are (except for X'00', options can be summed): </p>
<table>
<table>
<tr><th>Setting</th><th>Trusted login allowed for...           </th></tr>
<tr class="head"><th>Setting</th><th>Trusted login allowed for...</th></tr>
<tr><th align="right"><var>X'00' </var></th><td>
 
<p>Trusted login not allowed</p>
<tr><th align="right"><var>X'00' </var></th>
</td></tr>
<td>Trusted login not allowed</td></tr>
<tr><th align="right"><var>X'01' </var></th><td>
 
<p>CICS applications (IODEVs 11, 23, 29); see the <b>Note</b> below.</p>
<tr><th align="right"><var>X'01' </var></th>
</td></tr>
<td>[[CICS_terminal_interface|CICS applications]] (IODEVs 11, 23, 29); see the <b>Note</b> below.</td></tr>
<tr><th align="right"><var>X'02' </var></th><td>TSO applications (IODEVs 11, 29)           </td></tr>
 
<tr><th align="right"><var>X'04' </var></th><td>Batch applications (IODEVs 23, 29)         </td></tr>
<tr><th align="right"><var>X'02' </var></th>
<td>[[TSO_terminal_interface|TSO applications]] (IODEVs 11, 29) </td></tr>
 
<tr><th align="right"><var>X'04' </var></th>
<td>Batch applications (IODEVs 23, 29)</td></tr>
</table>
</table>
<p class="note"><b>Note:</b>  
 
<br/>TPROCESS applications cannot use the SECTRLOG option. Doing so results in the following message:
<blockquote class="note"><b>Note:</b> [[Program_Communication_facilities#TPROCESS_.28terminal_process.29_communication|TPROCESS]] applications cannot use the <var>SECTRLOG</var> option. Doing so results in the following message:
<br/></p>
<p class="code">M204.1786: PROCESS TO PROCESS NOT SUPPORTED ON THIS THREAD</p>
<p class="code">M204.1786: PROCESS TO PROCESS NOT SUPPORTED ON THIS THREAD
 
</p><p>
If your site wants to allow trusted logins from CICS full screen applications (IODEV 11) and BATCH2 jobs (IODEV 29) specify the following settings:
<br/>If your site wants to allow trusted logins from CICS full screen applications (IODEV 11) and BATCH2 jobs (IODEV 29) specify the following settings:  
<p>IODEV 11 line:  </p>
<br/>IODEV 11 line:  </p>
<p class="code">SECTRLOG=X'01' </p>
<p class="code">SECTRLOG=X'01'  
<p>IODEV 29 line:  </p>
</p><p>
<p class="code">SECTRLOG=X'04'</p>
<br/>IODEV 29 line:  </p>
</blockquote>
<p class="code">SECTRLOG=X'04'
 
</p><p> </p>
[[Category:User parameters]]
[[Category:User parameters]]
[[Category:Parameters]]
[[Category:Parameters]]

Latest revision as of 11:25, 25 May 2017

Security trusted login environment

Summary

Default value
X'00'
Parameter type
User
Where set
On user's first parameter line; not resettable
Related products
All
Introduced
Model 204 V3.2

Description

The CRAM thread applications for which logins are trusted

SECTRLOG defines which CRAM thread applications are allowed to log in with a trusted user ID. The CRAM threads that can have trusted login applications are:

IODEV 11 (CRFSCHNL)

IODEV 29 (CRIOCHNL)

IODEV 23 (IFAMCHNL)

SECTRLOG must be set on the first IODEV line for each trusted CRAM thread so it is picked up during the initialization of each CRAM channel. End users must follow the trusted login procedures described in the Security interfaces pages.

Valid settings of SECTRLOG are (except for X'00', options can be summed):

SettingTrusted login allowed for...
X'00' Trusted login not allowed
X'01' CICS applications (IODEVs 11, 23, 29); see the Note below.
X'02' TSO applications (IODEVs 11, 29)
X'04' Batch applications (IODEVs 23, 29)

Note: TPROCESS applications cannot use the SECTRLOG option. Doing so results in the following message:

M204.1786: PROCESS TO PROCESS NOT SUPPORTED ON THIS THREAD

If your site wants to allow trusted logins from CICS full screen applications (IODEV 11) and BATCH2 jobs (IODEV 29) specify the following settings:

IODEV 11 line:

SECTRLOG=X'01'

IODEV 29 line:

SECTRLOG=X'04'