CMIP services provides two kinds of security. One kind of security is between association partners. It verifies that association partners have proper authorization to be in communication with each other. This kind of security defines which manager and agent application programs can communicate with each other. The system administrator controls this access by defining either only those partners that are allowed to request management functions or those that are to be specifically excluded. Wildcards and defaults can be used.

See z/OS Communications Server: SNA Network Implementation Guide and z/OS Communications Server: SNA Resource Definition Reference for more information about this type of security.

The other kind of security is across the API. The API security restricts access to application program that are not authorized to act as manager application programs or agent application programs. This security is implemented by a password, similar to the passwords used by traditional VTAM® application programs.

For information about where the password is passed to the MIBConnect function, see MIBConnect—MIB connection function.