SSH
Home Prev Up Next  

Creating a User for Batch File Transfers

You can create users specifically for running Tectia Server for IBM z/OS file transfer batch jobs. Batch users need only an OMVS segment. They do not need TSO or passwords.

To create a user, for example SFTUSER, for running batch file transfers, do the following steps:

  1. Create a user, for example using RACF:

    ADDUSER SFTUSER NAME('SSH Tectia Batch User) OWNER(IBMUSER) +
NOPASSWORD NOOIDCARD +
OMVS(HOME('/u/SFTUSER') PROGRAM( /nologin ) UID(12345))

    The home directory and UID must be unique for each user.

  2. Enter the following commands:

    # mkdir /u/SFTUSER              1
# mkdir /u/SFTUSER/.ssh2        2
# chown -R SFTUSER /u/SFTUSER   3
# chmod 700 /u/SFTUSER/.ssh2    4
    1

    Create the USS home directory /u/SFTUSER for the SFTUSER user.

    2

    Under the home directory, create the .ssh2 subdirectory for storing the remote server host keys (and optionally user keys and the user-specific ssh-broker-config.xml configuration file).

    3

    Make SFTUSER the owner of these directories.

    4

    Give only SFTUSER full (read, write and execute) permissions to the .ssh2 subdirectory.

[Note]Note

If you use ACF2 for system security and have enabled the TSO Command Limiting list, the batch user must have BPXWRTCM permitted.

Home Prev Up Next  

Copyright 2015 SSH Communications Security Corporation
This software is protected by international copyright laws. All rights reserved.
Contact Information