: 4 Days
z continues to extend the value of the mainframe by leveraging robust security
solutions to help meet the needs of today's on demand, service-oriented
infrastructures. System z servers have implemented leading-edge technologies,
such as high-performance cryptography, multi-level security, large-scale
digital certificate authority and life cycle management, improved Secure
Sockets Layer (SSL) performance, advanced Resource Access Control Facility
(RACF) function, and z/OS Intrusion Detection Services. This advanced z/OS
security course presents the evolution of the current z/OS security
architecture and explores in detail the various technologies involved in z/OS
Cryptographic Services, z/OS Resource Access Control Facility (RACF), and
z/OS Integrated Security Services.
In the hands-on
exercises, you begin with your own z/OS HTTP Server in a TCP/IP environment.
Throughout the exercises, you make changes to the configuration to implement
authentication by using RACF, SSL and the use of digital certificates. Use is
made of facilities such as RACDCERT to manage digital certificates, PKI
Services and RACF auto registration. You will also implement different
scenarios to implement ssl security for a typical tcpip application; FTP: SSL,
TLS, server authentication, client certificates and AT-TLS. These exercises
reinforce the concepts and technologies being covered in the lectures.