Security in the EPI

A userid and password might be required for each conversation that takes place between the CICS® Transaction Gateway or CICS Universal Client and the CICS server, depending on how the CICS Transaction Gateway or CICS Universal Client and the CICS server have been configured.

EPI security involves:

Authentication
The CICS server checks that the userid and password information associated with a terminal is valid. The frequency with which the userid and password are authenticated by the CICS server depends on whether the terminal is sign-on capable or sign-on incapable.
Authorization
The CICS server checks that the terminal is allowed access to the requested resource.

The userid and password can be set at terminal or connection level. Both types can be set by the user application. If there are no userid and password values for the terminal, the values for the connection are used. For information about how to set the connection userid and password, refer to the CICS Transaction Gateway: Administration book for your operating system. The requirement for a userid and password depends on the CICS server configuration.