Version: v3.2.x LTS
Authentication mechanisms
Twitter
LinkedIn
Facebook
EmailAuthentication mechanisms
As an extender, you can change the way Zowe CLI uses various mechanisms of authentication when communicating with the mainframe.
Zowe CLI accepts various methods, or mechanisms, of authentication when communicating with the mainframe, and the method that the CLI ultimately follows is based on the service it is communicating with.
However, some services can accept multiple methods of authentication. When multiple methods are provided (in a profile or command) for a service, the CLI follows an order of precedence to determine which method to apply. Extenders can modify this order for their plug-in.
To learn the authentication methods used for different services and their order of precedence, refer to the following table.
| Service | Order of precedence |
|---|---|
| API Mediation Layer Note: To avoid errors, update profiles for services routed through API ML to store base path instead of port number | 1. username, password 2. API ML token 3. PEM certificate |
| Db2, FTP, most other services | username, password |
| SSH | 1. SSH key 2. username, password |
| ZOSMF direct connection | 1. username, password 2. PEM certificate |