If you specify a "Conversation security level" of
already_verified in the LU 6.2 Partner LU Profile, SNA
Server will actually accept both APPC security type SAME and APPC security
type PROGRAM from remote clients.
SNA Server should be configured appropriately to accept the type of APPC security requested by the client. The APPC security type may be one of the following:
The following section provides some guidance and examples of how to configure the SNA subsystem at the server to handle each of the security types requested by the client. See your SNA Server documentation for more detailed information on configuring APPC security.
Do the following:
For the LU 6.2 TPN Profile that you are using, set the "Resource security level" to none.
When configuring for APPC security type NONE, you do not need to define an LU 6.2 Partner LU Profile.
If you have a specific LU 6.2 Partner LU Profile defined for the client partner LU; in that profile, set the "Conversation security level" to none.
Do the following:
For the LU 6.2 TPN Profile that you are using, set the "Resource security level" to conversation. The system will check that the username and password are a valid AIX login username and password.
| Note: | You can also set the "Resource security level" to access. If so, the system will check that the username and password are a valid AIX login username and password, and if a Resource Security Access List Profile is also specified in the LU 6.2 TPN Profile, the system will also check that the username is contained in the specified resource security access list. |
When configuring for APPC security type PROGRAM, you do not need to define an LU 6.2 Partner LU Profile.
If you have a specific LU 6.2 Partner LU Profile defined for the client partner LU; in that profile, set the "Conversation security level" to conversation.
Do the following:
For the LU 6.2 TPN Profile that you are using, set the "Resource security level" to conversation.
| Note: | You can also set the "Resource security level" to access. If so, the system will check that the username is a valid AIX login username, and if a Resource Security Access List Profile is also specified in the LU 6.2 TPN Profile, the system will also check that the username is contained in the specified resource security access list. |
When configuring for APPC security type SAME, you must create a specific LU 6.2 Partner LU Profile for the client partner LU, and in that profile you must set "Conversation security level" to already_verified.
|
|
If you specify a "Conversation security level" of
already_verified in the LU 6.2 Partner LU Profile, SNA
Server will actually accept both APPC security type SAME and APPC security
type PROGRAM from remote clients.
|