You can use PEM procedure calls to access login information or change a user’s host password, only if the user already has a valid host password that is known to the mainframe security system.
You cannot use the sgw_pemchpwd or sgw_pemchgrppwd procedure
calls to set up the initial host password for a new user.
The TRS administrator coordinates host security setup for new users with the mainframe external security administrator:
The TRS administrator uses the sgw_addlog or sgw_addtrngrp procedure to set up an individual or group user ID and initial host password at the TRS security level.
The mainframe external security administrator implements the assigned user ID and host password at the mainframe security level.
After initial setup is complete, the new user should log in to the system and change the administrator-assigned password to a private one using the sgw_pemchpwd procedure call.
For more information about setting up new users, see “Adding a login” about using sgw_addlog.
For more information about setting up new transaction groups, see “Adding a transaction group” in Chapter 4 about using sgw_addtrngrp.
