If you used Security Assertion Markup Language (SAML) support in earlier CICS® releases, follow this procedure to upgrade to
CICS Transaction Server for z/OS®, Version 5 Release 2.
About this task
In previous releases, support for SAML was provided by CICS TS Feature Pack for Security Extensions V1.0. In CICS TS 5.2, this function is incorporated
into CICS and the feature pack is not
supported.
Procedure
- Copy your STS configuration file to a new location on z/OS UNIX to use with the
new CICS release.
- Upgrade your java.policy file.
- If you are using a user java.policy file, copy it
to a new location on z/OS UNIX to use with the new CICS release.
- Update the following rule to refer to the new CICS root
directory.
:// All permissions granted to CICS codesource protection domain
grant codeBase "file://USSHOME//-" {
permission java.security.AllPermission;
};
where
USSHOME is the name and path of the root
directory for CICS Transaction Server files on z/OS® UNIX.
- Remove the rule that applies to the feature pack files:
grant codeBase "file:fp_dir-" { permission java.security.AllPermission;
};
where fp_dir is the Feature Pack installation
directory.
- Upgrade your JVM profile by following the general instructions for upgrading
JVM profiles, which are given in Upgrading the Java environment. Perform the following additional steps:
- Delete the CLASSPATH_SUFFIX line from your JVM server profile.
- If you are using a user java.policy file, update
the java.security.policy property to refer to the new location of this
file.
- When no CICS instances are using it, uninstall the feature pack.