PASSPORT Knowledge Base
Miscellaneous

Date Published: August 16, 2010

Title

Express Logon Feature for PASSPORT PC to Host

Product

PASSPORT PC to Host

Emulation Types

TN3270

Issue

What is Express Logon Feature and how can I configure PASSPORT PC to Host to use the Express Logon Feature?

Solution

The Express Logon Feature (ELF) allows a user to run a macro, which securely logs onto a host application without the transmission of a host user ID and password. When enabled, the TN3270 server uses the certificate information and the application ID from the SSL session to request a user ID and PassTicket (a temporary password) from the IBM host access control program, RACF.

Follow the steps below to configure your PASSPORT session to work with Express Logon macro:

1. The host administrator must configure SSL with client authentication and ELF support on the host.

2. Configure a PASSPORT session for SSL/TLS security with Client Authentication. Click here for more information on how to configure PASSPORT to use SSL/TSL security with Client Authentication.
   
   

3. Record a macro to log on to the host application using your assigned user ID and password.

4. Edit the recorded macro and make the changes below:
   
   - Add line SendELFApplid ("applid") after the Dim statement where "applid" is the Application ID that is defined on the host by your administrator
   - Replace line SendHostKeys ("userID<ENTER>") with line SendHostKeys (")USR.ID(<ENTER>")
   - Replace line SendHostKeys ("password<ENTER>") with line SendHostKeys (")PSS.WD(<ENTER>")

5. Save the macro.

6. Enable Start Up Macro under Communication Setup®Miscellaneous tab (pointing to the recorded macro).
   
   

More Information

• Enabling SSL/TLS Client Authentication

• SSL Certificate Type

Keywords

express, logon, feature, elf, client, authentication, ssl, macro