Default language.

Getting Started with File-AID Data Privacy

Some content is unavailable due to permissions.

can be accessed from , which is Eclipse based, allowing you to access data on the mainframe and database management systems (DBMS) from your PC or workstation.

Before you can work with the data privacy application you must perform basic setup. To use translate tables, the translate tables must be created and appropriate credentials assigned. To use dynamic privacy rules with BMC's File-AID products, you must create a project with its associated data elements and project rules.

Basic Setup

The basic setup steps only need to be performed when you first install the  or if your working environment changes.

  1. Start the .

  2. Set up File-AID Services:

    Important

    To use Data Privacy, File-AID Services must be installed on a Windows or Linux server by your System Administrator as described in the Data Privacy section of the 

     Installation Guide.

    1. Select Window > Preferences, expand BMC and select File-AID Services.
    2. Type the URL for your File-AID Services. An example URL is https://cwsserver.dnsname:3081.
    3. Click Test Connection.
    4. If you get a Connection Successful message, click Apply and OK. Click OK again. You will return to .
  3. From the  Welcome window, click the Data Privacy icon, or from the  menu, select BMC > File-AID Data Privacy. This opens the Rules Explorer view and shows the available repositories. If your Rules Explorer pane is empty, click the Refresh icon image2021-8-17_12-27-30.png to list your available repositories.
  4. Your Data Privacy Administrator must assign you a user role. The first time you start data privacy, if your role has not yet been assigned, you will receive a "No Roles" error message. Without a role assignment, you will be unable to perform any data privacy tasks. For a description of the default security roles, see Manage-Security. For a description of how to add, update, or delete a user role, see Configure-Security.
  5. If you wish to use a repository other than the default Derby repository that comes with File-AID Services, you must first create it. For instructions on how to do this, see Manage-Data-Privacy-Repositories. To create a new repository, you need to be assigned the “BMC Data Privacy Global Resource Admin” role or the "BMC Data Privacy Admin" role. Other roles are not permitted to create new repositories.

  6. Before you can use data privacy for mainframe data, you must define a mainframe host in . For complete details for defining a host, see the Host Explorer online help. In general, to configure a new host, you must:

    1. Open the Host Explorer view.
    2. Right-click on Hosts and select Configure > Host Connections on File-AID Services from the list. The File-AID Services Connections dialog box appears.
    3. To configure a mainframe host, select the HCI tab, and click Add. The File-AID Services Administration dialog box appears.
    4. Enter the User ID and Password. Initially, the user ID is "cwadmin" and the password is the same: "cwadmin". If you are the Administrator, the password should be changed by providing the new password of your choice.
    5. Click OK. The Host Connections dialog box appears.
    6. On the General tab, enter the Host, Port, and an optional Description.
    7. Optionally, select the Secure connection check box to enable an encrypted secure HCI connection. Then choose the encrypted protocol your mainframe is configured to use. Selecting Auto will cause Host Explorer to check to see what version of TLS or SSL you have.
    8. Optionally, select the Credentials tab which enables you to manage any credentials you have saved for this host during Login.
    9. Optionally, select the Advanced tab to reveal additional parameters:
      • Read/write timeout (seconds) determines the amount of time Host Explorer will wait for a response from the HCI before timing out.

      • I/O trace level should only be changed from the default of None when directed by BMC Support.

    10. Click OK. You will return to the File-AID Services Connections dialog box. Your new mainframe host will now appear in the list of hosts.
    11. To add a new database connection, click the JDBC tab and click Add. The Database Connection dialog box appears.
    12. On the General tab, select the database type (IBM DB2 for Linux, Unix, and Windows; IBM DB2 for z/OS; Oracle; SQL Server; Sybase) from the list. Enter the database host, port number, location/SID, and an optional description if desired.
      • For Oracle you may also select a Connection Type (SID or Service name).
      • Optionally, you may select the Properties tab to define and manage any additional properties.
      • The Credentials tab is provided to enable you to manage any login credentials you have saved for this database during Login.
    13. Click OK. You will return to the File-AID Services Connections dialog box. Your database connection will now appear in the database list.
    14. Click OK. You will return to .
    15. When you try to access a mainframe host or a database connection in the Host Explorer view, a login dialog box appears. Enter your login credentials. For the mainframe, enter your mainframe user ID and password. For a database, enter your database ID and password. You can now access only the information that you are authorized to access. For example, you will only be able to access those files that you can access if you were logged on to the mainframe or your database.

    Working with a Project

  7. A repository must be opened before you can create or select a Data Privacy project. To open a repository, double-click it or right-click and select Open Repository. This provides a list of projects within that repository that you can work with.

    Important

    If the repository you expected to see does not appear in the list, click Refresh.

    If you click Refresh, any open projects will be closed and any changes you have made during this session since the project was last saved will not be saved. A message box appears giving you the option to continue and lose changes or cancel.

  8. To create a new project (or your first project), see Create-a-New-Data-Privacy-Project for complete details.

    Important

    Perspectives and views can be opened and closed as desired and windows can be repositioned within the display. When you exit 

    , your current perspectives are saved. The next time you start 

    , the same perspectives that were open when you exited will reopen.

    Creating Credentials and Translate Tables

  9. Credentials are required at disguise execution time to allow the disguise job to access the values stored in translate tables. For information on how to create new credentials, see Create-New-Credentials. Translate table definitions require credentials. The credentials can be created prior to defining the translate table or they can be added from within Manage Translate Tables. Credentials are created through Resource Administration, and you must be a Data Privacy Administrator or a Data Privacy Global Resource Administrator to create, delete, or modify credentials.
  10. Translate tables allow you to use a table of replacement values for data that you want to disguise. For a description of translate tables, see Manage-Translate-Tables. For information on how to create new translate tables, see Create-a-New-Translate-Table. Translate tables are created through Resource Administration, and you must be a Data Privacy Administrator or a Data Privacy Global Resource Administrator to create new translate tables.

To return to the Welcome window, select Help > Welcome

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*