Targeting a RACF, CA-TopSecret, or CA-ACF2 system with Mainframe Connector
For each mainframe instance, add a target system in Bravura Security Fabric (Manage the System > Resources > Target systems).
Type is one of the following:
ACF2 (with Mainframe Connector)
RACF (with Mainframe Connector)
TopSecret (with Mainframe Connector)
Address uses the options described in the table below.
Administrator ID and Password are the name and password of the placeholder account that you created earlier.
Table 1. ACF2, RACF, TopSecret address configurationOption
Description
Server
DNS name or IP address.
(key: server)
Port
The Mainframe Connector listener TCP port number.
(key: port)
Passphrase reset/verify
Optionally enable the target system to manage a second additional password attribute named "passphrase" for the following settings for the password and passphrase used for authentication and password resets:
Reset/verify password
Only a password is used, passphrase is not used.
If a password is longer than 8 characters, it will be truncated to the first 8 characters.
Reset/verify passphrase
Only a passphrase is used, password is not used.
The passphrase must be longer than 8 characters.
reset/verify both password and passphrase
Both the password and passphrase are passed in, depending on the length.
Only the password is passed in if it is 8 characters or under, passphrase is not passed in for this case.
If it is longer than 8 characters, the passphrase is passed in and the password is truncated to the first 8 characters.
reset/verify either password or passphrase (dependent on password length)
Only either the password or passphrase will be passed in, depending on length.
The password is used if it is 8 characters or under, passphrase is not used.
The passphrase is used if it is more than 8 characters, password is not used.
(key: passphrase)
Note
Maintaining both password and passphrase is not recommended for the same target as it may cause confusion as to what the password/passphrase is set to and when the password is truncated. If both must be maintained, it is best to have two targets configured with each having their own password policies defined.
The address syntax is as follows:
<DNS name (or IP address)>/<port number>[/passphrase=<true|false|both|either-or>]