Security for HTTP connections
- The Z controller and the HCL Workload Automation Agent (z-centric agent).
- The Z controller and another Z controller (z/OS remote engine).
- The Z controller and the dynamic domain manager.
- The Z controller and the HCL Workload Automation master domain manager (distributed remote engine).
- The z/OS controller and the HCL Workload Automation Agent (z-centric agent).
- The z/OS controller and another z/OS controller (z/OS remote engine).
- The z/OS controller and the dynamic domain manager.
- The z/OS controller and the HCL Workload Automation master domain manager (distributed remote engine).
- EQQCERCL
- The security certificate for the client.
- EQQCERSR
- The security certificate for the sever.
If you create your own certificates for an HTTP connection with the master domain manager or with the dynamic domain manager, you must run the customizing steps described in the section about customizing SSL connection to the master domain manager and dynamic domain manager in HCL Workload Automation: Administration Guide. A procedure about creating your own custom self-signed certificates is described in Scenario: configuring TLS with custom self-signed certificates.
If you are using SSL to communicate with a master domain manager, backup master domain manager, or dynamic domain manager, then the prefix of the common name
of the controller certificate must be defined in the Broker.AuthorizedCNs
option in the BrokerWorkstation.properties
file located in the
TWA_home/TDWB/config
directory of the distributed
engine.
- Copies the EQQCERCL certificate to a temporary sequential data set
- Copies the EQQCERSR certificate to a temporary sequential data set
- Imports EQQCERCL to RACF®
- Imports EQQCERSR to RACF®
- Deletes the temporary sequential data sets
- Creates the SAF key ring that is used to connect the imported certificates
- Updates the RACF® database with the new certificates and key ring