ESI provides a security management API which can be used to manage the
user IDs and passwords that the ECI and EPI use.
The user application can perform the following functions:
- Verify that a password matches the password recorded by the CICS® External
Security Manager (ESM) for a specified user ID.
- Change the password recorded by the CICS ESM
for a specified user ID.
- Determine if a user ID is revoked, or a password has expired.
- Obtain additional information about a verified user such as:
- When the password is due to expire
- When the user ID was last accessed
- The date and time of the current verification
- How many unauthorized attempts there have been for this user since the
last valid access
- Specify a default userid and password to be used for communication over
a CICS server
connection.
To use the ESI interface, the CICS Universal Client or CICS Transaction Gateway must
be connected to the CICS server with SNA.
An ESM, such as Resource Access Control Facility (RACF®), which is part of the z/OS® Security
Server, or an equivalent ESM, must also be available to the CICS server.