Multi-Factor Authentication (MFA)
When clients initially connect to the ADFzCC server they are prompted for a user ID and a password or passphrase. If the credentials are valid, the client can start sessions on the relevant z/OS system as the nominated user.
Rather than prompting for the user ID and password each time a new session is required, the plug-in client reuses the initial user ID and password. This can pose a problem for Multi-Factor Authentication users as their password or passphrase is typically single-use only. Consequently, reusing a credential will likely fail.
To support Multi-Factor Authentication users, the ADFzCC server provides support for PassTickets. For more information about PassTickets, refer to the documentation for RACF or your equivalent security product.