DB2 z/OS v11 - Trusted Context Setup

Bill Gallagher

DB2 z/OS v11 - Trusted Context Setup
We are looking to use DB2 trusted context for the first time at my shop.

What we are trying to do is this: we want to restrict access to execute a DB2 stored procedure such that only specific ID's coming from a set of specific application servers can execute it.

We created the following trusted context:

CREATE TRUSTED CONTEXT KMLTCTR
BASED UPON CONNECTION USING SYSTEM AUTHID ID1234
DEFAULT ROLE KMLROLE
WITHOUT ROLE AS OBJECT OWNER
ENABLE
ATTRIBUTES (
ENCRYPTION 'NONE',
ADDRESS 'DNS-NAME-1.MYCOMPANY.NET,
ADDRESS 'DNS-NAME-2.MYCOMPANY.NET '
)
WITH USE FOR
ID1234
WITHOUT AUTHENTICATION ;

This works for authid ID1234. We're trying to figure out how to enable this for multiple ID's to use, e.g. also for ID2345, ID3456, etc. But the documentation is confusing to us.

Can anybody clarify how to set up a single trusted context that we can use for multiple DB2 authids?

Thanks!

Bill Gallagher | Senior Systems Engineer, DBA | Data Administration
________________________________
This message (including any attachments) may contain confidential, proprietary, privileged and/or private information. The information is intended to be for the use of the individual or entity designated above. If you are not the intended recipient of this message, please notify the sender immediately, and delete the message and any attachments. Any disclosure, reproduction, distribution or other use of this message or any attachments by an individual or entity other than the intended recipient is prohibited.

TRVDiscDefault::1201