IBM z/OS RACF
This connectivity package provides support for managing users and groups within the z/OS operating system using the RACF LDAP interface.
See the main LDAP documentation for details, as most features are the same for RACF and LDAP.
Supported objects and operations
The Omada LDAP Connectivity allows you to manage both identity data and access rights.
| Object | Omada Identity data model | Operations |
|---|---|---|
| Users | Account | Create, read, update, delete Password Reset |
| Groups | Resource | Read |
| Groups assignment | Resource assignment | Create, read, update, delete |
Minimum required permissions
N/A
Implementation notes
The default configuration contains only basic properties. In most cases you will need to extend the configuration before the first use.
RACF LDAP implementation does not allow importing many objects with all attributes. To import data, the collector must get the object's racfid first and then get the attributes (providing racfid). Because of this operation logic, the collector may be slower than other LDAP implementations.
Network requirements
None.
Prerequisites
See the What is RACF? and IBM Resource Access Control Facility sections to get familiar with RACF and its concepts.