Ask the Expert

How to authenticate users using RACF for applications running in CICS Web support using existing sof

How to authenticate users using RACF for applications running in CICS Web Support (CWS) using existing software? The IBM sample programs either
(1)

    Requires Free Membership to View

Invoke HTTP Basic Authentication, which allows Internet Explorer users to save their passwords - permitting unauthorized users to sign-on using cached passwords or
(2) Result in non-persistent verifications requiring user to present credentials at every page change. We need persistent verified user-id and no stored passwords.


Jim Leinbach, of H&W Computer Systems, wrote a 2-part article for NASPA's Tech Support magazine January 2001. Part 1 describes session cookies as your answer and can be viewed/downloaded at http://www.naspa.com/PDF/2001/0101%20PDF/T0101001.pdf

. Part 2 is at http://www.naspa.com/PDF/2001/0201%20PDF/T0102003.pdf

. From my reading of the article "session cookies" might be just what you want. Basically, the analyzer can verify credentials initially and send back a token to be used as a session cookie which doesn't have to be stored on PC. You still have the problem of someone logging on then leaving while session still active only to have one of those durn interlopers sit down. Specialized peripherals like the Logitech Optical Whoopee Cushion can detect that security breach but ... {smile}


This was first published in August 2006

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: