You can create users specifically for running Tectia Server for IBM z/OS file transfer batch jobs. Batch users need only an OMVS segment. They do not need TSO or passwords.
To create a user, for example
SFTUSER, for running batch file transfers, do the following steps:
Create a user, for example using RACF:
ADDUSER SFTUSER NAME('SSH Tectia Batch User) OWNER(IBMUSER) + NOPASSWORD NOOIDCARD + OMVS(HOME('/u/SFTUSER') PROGRAM( /nologin ) UID(12345))
The home directory and UID must be unique for each user.
Create the USS home directory
SFTUSERuser. Under it, create the
.ssh2subdirectory for storing the remote server host keys (and optionally user keys and the user-specific
ssh-broker- config.xmlconfiguration file). Make
SFTUSERthe owner of these directories:
# mkdir /u/SFTUSER # mkdir /u/SFTUSER/.ssh2 # chown -R SFTUSER /u/SFTUSER # chmod 700 /u/SFTUSER/.ssh2
If you use ACF2 for system security and have enabled the TSO Command Limiting list, the batch user must have