The Tectia SSH Assistant (SSZASST) ISPF application provides an interface for installing and configuring Tectia Server for IBM z/OS and its client tools. It is designed to simplify the process of installing the product tar archive appropriately and performing the multiple configuration tasks required using traditional MVS tools (ISPF and JCL), without requiring the use of the Unix shell.
If you have not yet done so, transfer the Tectia SSH Assistant application XMIT file and the Tectia Server for IBM z/OS product tar archive in binary mode to your z/OS system. For instructions, see Uploading Files Required for Installation.
On the z/OS host, receive the Tectia SSH Assistant data set via the following command (replace
dataset.xmitwith the actual name of the uploaded XMIT data set, if needed):
TSO RECEIVE INDSN(
In response to the
RECEIVEprompt, you may enter the usual parameters to control the creation of the received data set, or just press enter to take the defaults and create a data set called
Inside the restored data set you will find a Rexx script called
$RECEIVE. EXEC the script to set up the application libraries:
TSO EXEC '
(Alternatively, you can simply type
$RECEIVEin a member list.)
This Rexx will prompt for the HLQ under which the application libraries are to be set up, as well as optional VOLSER, if needed.
Press Enter repeatedly to page through the command output.
The following libraries will be created, assuming default names:
The Tectia SSH Assistant application requires the Rexx runtime or Rexx alternate libraries to execute. The Rexx Alternate Library SEAGALT (for example,
IBM.REXX.SEAGALT, etc.), which is shipped as part of z/OS since version 1.9, may be used to satisfy this requirement. Make sure that SEAGALT is available in the linklist or in a STEPLIB allocated to your TSO session.
The following message indicates that a suitable Rexx runtime was not found:
IRX0159E The run time processor EAGRTPRC is not available
To solve the issue, add a line to the appropriate
PARMLIB(PROGxx)member such as:
LNKLST ADD NAME(LNKLST00) DSN(FAN140.SEAGALT) VOLUME(&SYSR1)
Set up the Tectia SSH Assistant application to be invoked. The simplest way to do this is to EXEC
.SSZASST.CEXEC(SSZ)directly, which will use LIBDEF to allocate the panel and skeleton libraries, assuming they share the same qualifiers as the Rexx library:
TSO EXEC '
Alternatively, you can concatenate the libraries to the appropriate DDs in your TSO logon procedure, or copy their contents to allocated user ISPF data sets.
The mode of operation of Tectia SSH Assistant follows a probably familiar approach of collecting settings, generating JCL jobs and configuration files, and then executing those jobs. Since there are many steps which must be run by a privileged user, such as granting RACF permissions, defining file systems, etc., the install jobs may be run by other users than the one who generated them.
Table 2.1. ISPF Tectia SSH Assistant Menu Structure
|Installation settings and defaults submenu|
|Define settings for installation input|
|Define settings for installation output|
|Load settings profile from logged definition|
|Generate installation jobs|
|Grant permissions to user doing install|
|Ensure C library program-controlled|
|Set up SSH Server user|
|Set up SOCKS Proxy Server user|
|Port 22 control|
|(Save previous installation key data)|
|Define installation ZFS|
|Load installation ZFS|
|(Restore previous installation key data)|
|Sample JCL and PARM libraries|
|Set up started task procedures|
|Install licenses from supplied tarball|
|Generate server host keys|
|Generate all jobs|
|Perform the step-by-step installation|
|Member list of generated installation jobs (|
|Browse log of settings and executed jobs (|
|Manage configuration files|
|View the installation |
|SSHD2 server configuration file (|
|Certificate Validator configuration file (|
|SOCKS Proxy configuration file (|
|Start/stop/modify started tasks|
|Control the SSH server|
|Control the certificate server|
|Control the Socks proxy server|