Your browser does not support HTML5 local storage or you have disabled it. Some functionality on this site, including saving your privacy settings and offering you special discounts, uses local storage and may not work with local storage disabled. We recommend allowing the use of local storage in your browser. In some browsers, it is the same setting used for disabling cookies.

SSH

Creating a User for Batch File Transfers

You can create users specifically for running Tectia Server for IBM z/OS file transfer batch jobs. Batch users need only an OMVS segment. They do not need TSO or passwords.

To create a user, for example SFTUSER, for running batch file transfers, do the following steps:

  1. Create a user, for example using RACF:

    ADDUSER SFTUSER NAME('SSH Tectia Batch User) OWNER(IBMUSER) +
    NOPASSWORD NOOIDCARD +
    OMVS(HOME('/u/SFTUSER') PROGRAM( /nologin ) UID(12345))
    

    The home directory and UID must be unique for each user.

  2. Enter the following commands:

    # mkdir /u/SFTUSER              1
    # mkdir /u/SFTUSER/.ssh2        2
    # chown -R SFTUSER /u/SFTUSER   3
    # chmod 700 /u/SFTUSER/.ssh2    4
    1

    Create the USS home directory /u/SFTUSER for the SFTUSER user.

    2

    Under the home directory, create the .ssh2 subdirectory for storing the remote server host keys (and optionally user keys and the user-specific ssh-broker-config.xml configuration file).

    3

    Make SFTUSER the owner of these directories.

    4

    Give only SFTUSER full (read, write and execute) permissions to the .ssh2 subdirectory.

[Note]Note

If you use ACF2 for system security and have enabled the TSO Command Limiting list, the batch user must have BPXWRTCM permitted.

===AUTO_SCHEMA_MARKUP===