The method used to identify the user is determined by the AUTHENTICATE and SSL attributes of the TCPIPSERVICE definition:
AUTHENTICATE | SSL | How the user is identified |
---|---|---|
![]() ![]() |
![]() ![]() |
![]() ![]() |
![]() ![]() |
![]() ![]() |
![]() If the client sends a certificate that is associated with a user ID, then that user ID applies, unless it is overridden by an analyzer program. If the client sends a certificate that is not associated with a user ID, a user ID can be supplied by an analyzer program or URIMAP definition, or allowed to default to the CICS default user ID. If the client does not send a certificate, then the connection is rejected. ![]() |
BASIC | all values | A user ID is obtained from the client, using HTTP basic authentication. This can be overridden by an analyzer program. |
CERTIFICATE | CLIENTAUTH | If the client sends a certificate that is associated with a user ID, then that user ID applies, unless it is overridden by an analyzer program. If the client sends a certificate that is not associated with a user ID, or does not send a certificate, then the connection is rejected. |
AUTOREGISTER | CLIENTAUTH | If the client sends a certificate that is associated with a user ID, then that user ID applies, unless it is overridden by an analyzer program. If the client sends a certificate that is not associated with a user ID, then the user ID is obtained from the client, using HTTP basic authentication, and the user ID is registered to the certificate. If the client does not send a certificate, then the connection is rejected. |
AUTOMATIC | NO or YES | A user ID is obtained from the client, using HTTP basic authentication. This can be overridden by an analyzer program. |
AUTOMATIC | CLIENTAUTH | If the client sends a certificate that is associated with a user ID, then that user ID applies, unless it is overridden by an analyzer program. If the client sends a certificate that is not associated with a user ID, then the user ID is obtained from the client, using HTTP basic authentication, and the user ID is registered to the certificate. If the client does not send a certificate, then the user ID is obtained from the client, using HTTP basic authentication. |
Note:
|