Management Agent for IBM RACF

  • Article

Applies To: Windows Server 2003 with SP1

The IBM® Resource Access Control Facility (RACF) Management Agent supports bi-directional synchronization of user accounts and groups from IBM RACF to Microsoft Identity Integration Server (MIIS) 2003 and from MIIS to RACF.

Properties

Available in Identity Integration Feature Pack for Microsoft® Windows Server™ Active Directory® directory service (IIFP)

No

Management agent type

File-based

Supported connected data source versions
  • IBM RACF OS/390 V2R10

  • IBM RACF Z/OS V1R4

  • IBM RACF Z/OS V1R5

  • IBM RACF Z/OS V1R6

MIIS 2003 features supported
  • Password management by using password extension

  • Full import

  • Export

Schema Information

The management agent for RACF uses a default schema with no schema discovery during the configuration of the management agent.

Remarks

  • The management agent for RACF does not support NETVIEW.NGMFVPSN.

  • When you provision an account, the default group attribute of the user profile can be populated, but it cannot be modified. Instead, use the group profile for maintaining group membership.

  • The management agent for RACF uses a default schema with no schema discovery at the management agent configuration time.

  • The RACF account that is configured for the management agent to use when performing RACF administrative operations must have the ‘SPECIAL’ attribute. If the management agent needs to access the Master Catalog on the Mainframe, ensure that the RACF account configured in the management agent has appropriate permissions to do so.

See Also

Concepts

Management Agents in MIIS 2003