For the latest information on upgrading to and from any versions of CICS TS, see CICS TS V5.6.

Upgrading SAML support

If you used Security Assertion Markup Language (SAML) support in earlier CICS® releases, follow this procedure to upgrade to CICS Transaction Server for z/OS®, Version 5 Release 2.

About this task

In previous releases, support for SAML was provided by CICS TS Feature Pack for Security Extensions V1.0. In CICS TS 5.2, this function is incorporated into CICS and the feature pack is not supported.

Procedure

  1. Copy your STS configuration file to a new location on z/OS UNIX to use with the new CICS release.
  2. Upgrade your java.policy file.
    1. If you are using a user java.policy file, copy it to a new location on z/OS UNIX to use with the new CICS release.
    2. Update the following rule to refer to the new CICS root directory. 
      :// All permissions granted to CICS codesource protection domain
grant codeBase "file://USSHOME//-" {
permission java.security.AllPermission;
};
      where USSHOME is the name and path of the root directory for CICS Transaction Server files on z/OS® UNIX.
    3. Remove the rule that applies to the feature pack files: 
      grant codeBase "file:fp_dir-" {  permission java.security.AllPermission;
        };
      where fp_dir is the Feature Pack installation directory.
  3. Upgrade your JVM profile by following the general instructions for upgrading JVM profiles, which are given in Upgrading the Java environment. Perform the following additional steps:
    1. Delete the CLASSPATH_SUFFIX line from your JVM server profile.
    2. If you are using a user java.policy file, update the java.security.policy property to refer to the new location of this file.
  4. When no CICS instances are using it, uninstall the feature pack.
Parent topic: Upgrading CICS Transaction Server

dfhe5_plan_saml.html | Timestamp icon Last updated: Saturday, 15 June 2019