Overview

Operating System/400, 5769-SS1

OS/400 is designed to be comprehensive and scalable. Some of its features are described in this section. They help to make OS/400 the most complete operating system on the market today.

Ease of Installation and Use

New AS/400s can be delivered with OS/400 (and sometimes Business Partner software as well) fully installed. System-supplied menus are provided so that the system can be set up by someone unfamiliar with the control language. Fastpath commands exist for those who are familiar. Local devices can be automatically configured.

The online help text is context sensitive and can be browsed through an index search facility where the user requests help text in their own words. A Copy Screen Image function allows an image from a workstation to be displayed on another. This can be used when a departmental user requires support from a help desk or in conjunction with IBM's Electronic Customer Support. Other assist menus like the Operational Assistant help in day-to-day tasks and clean-ups.
-------------- Curbstone Home Page ----------------

Included with all AS/400s is a standard V.24 communications line (although a chargeable cable and modem are also required). This is intended for Electronic Customer Support to enable customers to sign on to remote systems for support (that is, from Business Partners or IBM). If a hardware or software problem arises, Program Temporary Fixes (PTFs) can be downloaded to the AS/400 to assist in problem determination and resolution. The line can also be used for Service Director, where the AS/400 will initiate a call to an IBM service center at a prearranged time for its error logs to be checked and to enable service actions to be taken, often before the customer is aware of the existence of a problem.

PTFs may also be downloaded via the internet using a PC with Windows 95, 98, or NT that is connected to an AS/400 through TCP/IP and the Internet. The various configurations and setup information is documented at the Web site:

http://as400service.rochester.ibm.com

Except for the medium of transport (internet), the functionality is the same as the ECS method of transport. The user selects the PTFs and options using a Web browser and submits the order. At the referenced Web site above, the user can also search on PTF cover letters and read them before the order is even placed. The same entitlement rules that apply on the ECS connection are enforced. In other words if a user can acquire PTFs electronically over the ECS, then they will be able to acquire PTFs over the Internet.
-------------- Curbstone Home Page ----------------

Security

Within the AS/400 a level of security can be chosen to meet a customer's need. These range through:

• minimal security where no passwords are used and any user can perform any function.
• password security where passwords are used, but users can perform any function.
• resource security where passwords are required and object usage can be controlled and users can be restricted to specific functions.
• resource security and operating system integrity. Passwords are required and object usage can be controlled. Users can be restricted to specific functions, and use of unsupported interfaces is restricted.

A security journal is provided which logs all security violations. The highest level of security (Level 50) enables the AS/400 to operate at the C2 level of trust as defined by the U.S. government.

For departments where several members have the same duties or requirements, group profiles can be used. There are numerous system values that can be implemented controlling passwords and their expiry dates, and what is and not allowable for a password. Shipped with OS/400 is the publication "Tips and Tools for Securing Your AS/400" (SC41-5300) which provides report generation tools to assist administrators in assessing their implementation of security. Within communications, further security is possible by implementing LU6.2 Session Level Encryption (SLE) for AS/400 applications which use LU6.2 communications.
-------------- Curbstone Home Page ----------------

Connectivity

AS/400 offers a wide range of communication capabilities and functions that enable the AS/400 to communicate with most IBM and non-IBM systems.

The AS/400 supports the following protocols and networks:

• IDLC (ISDN Data Link Control)
• IBM Token-Ring Network (IEEE 802.5 and 802.2)
• T1/E1/J1 and Fractional T1 Networks (high bandwidth)
• Asynchronous
• Binary Synchronous
• Synchronous Data Link Control (SDLC)
• X.21
• X.25
• Ethernet Version 2 or IEEE 802.3
• FDDI LANs
• ATM LANs

OS/400 offers the following facilities:

• Simple Network Management Protocol (SNMP) In TCP/IP Networks
• Alerts support to NetView, System/36, System/38, AS/400
• IBM Token-Ring Network Management Support
• Distributed Host Command Facility (DHCF)
• Link Problem Determination Aid (LPDA)
• Distributed System Node Executive (DSNX)

OS/400 has the following communication facilities:

• TCP/IP Support
• X.21 Short Hold Mode (SHM) and Multiple Port Sharing (MPS)
• Remote Work Station Support
• 3x74 Remote Attach
• 5x94 Remote Attach
• Intersystem Communications Function
• Advanced Peer-to-Peer Networking (APPN)
• Dependent Logical Unit Requester (DLUR)
• Advanced Program-to-Program Communication (APPC)
• SNA Upline Facility to System/370 IMS and CICS Hosts
• Binary Synchronous Communications Equivalence Link (BSCEL)
• ICF Retail Communications Support
• ICF Finance Communications Support
• Non-ICF Finance Communications Support
• SNA Distribution Services (SNADS)
• SNA Primary Logical Unit 2 Support
• SNA/Management Services Transport
• Distributed Relational Database Support
• Object Distribution Facility (ODF)
• Display Station Pass-through
• Distributed Data Management (DDM)
• SNA Passthrough
• IBM Network Routing Facility (NRF) Support/400
• Autodial Support
• 3270 Device Emulation
• 3270 SNA API Support for IBM 3278 Model 3, 4, and 5
• ISDN Support
• 5394/5494 SNA Backbone Support
• File Transfer Support
• Interactive Terminal Facility (ITF)
• SAA Common Programming Interface for Communications (CPI-C)
• IPX/SPX Communications
• ATM LAN Emulation

All these facilities are part of OS/400. Other communication facilities are available as licensed programs, such as Communications Utilities for AS/400 (see "IBM Communications Utilities for AS/400 Version 4 Release 4, 5769-CM1" on page 312 of the Licensed Program section), and Client Access Family for AS/400 (see "IBM AS/400 Client Access Family for Windows Version 4 Release 3, 5769-XW1" on page 318).

TCP/IP Utilities has been included with OS/400, (though not part of OS/400) since Version 3.1. The TCP/IP communication protocol function, along with related administration and configurations, is packaged with OS/400. TCP/IP applications, such as TELNET, SMTP (Simple Mail Transfer Protocol), FTP (File Transfer Protocol), RIP (Routing Information Protocol), and LPR/LPD (remote print support) remain part of the TCP/IP Utilities along with the Pascal-based API. These TCP/IP Utilities are automatically shipped to all customers that order OS/400, although they are not a part of OS/400.
-------------- Curbstone Home Page ----------------

TCP/IP, as part of the OS/400, supports:

• PING (Packet Internet Groper)
• NETSTAT (Network Status)
• Sockets API
• SNMP (Simple Network Management Protocol)

NETSTAT, the network status function on the AS/400 system provides information about the status of TCP/IP network interfaces, routes, and connections on a local AS/400 system.

Sockets API allows unrelated processes to exchange data locally and over networks. Both connection-oriented and connectionless communication are provided for TCP/IP. SNMP is the protocol for systems management used in TCP/IP networks. Simple Network Management Protocol is the industry standard for managing networks in the worldwide TCP/IP Internet environment.

Elements provided with OS/400 include SNMP agent, SNMP framework, and TCP/IP protocol support. The TCP/IP communications protocol is enhanced with network management capabilities to support SNMP control.
-------------- Curbstone Home Page ----------------

The SNMP management function is split between two kinds of entities: the "manager" and the "agent." The SNMP agent function runs on the AS/400 system and allows it to be managed by network management stations that have implemented the SNMP manager function.

The SNMP framework provides the ability to write SNMP applications on the AS/400 system.

The APIs for SNMP managing applications have the ability to manipulate SNMP management data using SNMP agents either locally or remotely. By using Anynet/400 support, SNMP information can be retrieved from Anynet configured systems on SNA or TCP/IP networks, thus making it easier to discover and manage potential problems anywhere within the network. TCP/IP has been further enhanced at Version4 Release2 and Version4 Release3.
-------------- Curbstone Home Page ----------------

HTTP Server for AS/400

For AS/400, network computing is supported with HTTP Server for OS/400, formerly known as Internet Connection Server. An AS/400 can access a vast network of computers as if they were a single entity. Everyone and everything can access and distribute information, applications, and services provided by the network.

HTTP Server for the AS/400 system provides:

• Web connection support for OS/400, providing a common protocol for support of multiple vendor products on the World Wide Web (WWW):
  • Digital ID authentication (certificate support). (Requires one of the Cryptographic products).
  • Socks and SSL tunneling
  • 5250/Hypertext Markup Language (HTML) Workstation Gateway (WSG).
  • Server automatically transforms current AS/400 5250 applications to HTML for display on Web browsers.
  • Logging of World Wide Web Server access for tracking activity, allowing AS/400 owners to get feedback on who is accessing their servers and what parts are being accessed.
  • Automatic browser detection
  • Support for Platform for Internet Content Selection (PICS)
  • Access to documents stored in Notes with a Domino plug-in
  • Use LDAP to store configuration and user authentication information
  • Support for multi-thread CGI programs.
  • Dynamic caching of Web pages
  • Support for the Secure Sockets Layer (SSL) is provided by one of the following cryptographic products:
    • 5769-AC1 40-bit for AS/400 (Approved for export by U.S government)
    • 5769-AC2 56-bit for AS/400 (Approved for export by U.S government)
    • 5769-AC3 128-bit for AS/400 (Available in USA and Canada only)

  
  -------------- Curbstone Home Page ----------------
  

• TCP/IP Support
  • Point-to-Point Protocol (PPP) synchronous and asynchronous communication connections spanning low to high bandwidth connections to the World Wide Web and Internet.
  • Serial Line Internet Protocol (SLIP) asynchronous communication connections allows inexpensive, limited bandwidth access to the World Wide Web and Internet.
  • Anonymous FTP support provides access to a restricted area of data on the AS/400 system that the public can access without a password or user identification.
  • Support for popular graphical FTP clients and Web server development tools.
  • Direct database serving to Web browsers which allows DB2 for OS/400 data to be queried and served (with graphics, if desired) to a Web browser using HTTP Server for AS/400.

• Sockets and SSL support
  • Sockets programming is the use of the socket application program interface (API) to establish communication links between remote and local processes. The sockets API is located in the communications model between the application and the transport layers. The sockets API that allows applications to interface with the transport or networking layers on the typical communications model. It is shipped as part of OS/400

    The sockets API is part of the open environment on the AS/400 system. The sockets API, along with the integrated file system, eases the effort that is required to move UNIX** applications to AS/400 systems. Sockets on the AS/400 system are based on and are compatible with Berkeley Software Distributions (BSD) 4.3 sockets. Application programs written in the Integrated Language Environment (ILE) C/400 language can use the sockets API.
    -------------- Curbstone Home Page ----------------
    

  • Secure Sockets Layer (SSL) is a security protocol which provides privacy over an open communications network (i.e., the internet). The protocol allows client/server applications to communicate in a way that is designed to prevent eavesdropping, tampering, and message forgery.

    Many applications on the AS/400 are SSL enabled in V4R4 including TELNET, HTTP server, CA/400 host servers, systems management, and LDAP. Also, OS/400 SSL support includes a set of APIs which, when used in addition to the existing OS/400 sockets APIs, provide the functions required for applications to establish secure communications.

  
  -------------- Curbstone Home Page ----------------
  

In addition, other products in the Network Computing area, such as Firewall for AS/400, provide important enhancements in this area. For more information see the Net.Commerce Web site at:

http://www.internet.ibm.com/commercepoint/net.commerce

AS/400 Operations Navigator

Operations Navigator continues to be a strategic platform for providing a graphical interface to systems administration functions. Operations Navigator has been extensively enhanced with Version4. This graphical front end to the AS/400 is provided by a Windows 95/98/NT client (Client Access is not required). It is designed to be highly integrated with Windows and allows users to perform AS/400 tasks and work with systems resources.

Some of the facilities are discussed below:

• Managing Jobs enables users to perform actions against or change the properties of jobs on AS/400 systems.
• Management central allows you to monitor up-to-the-minute performance information on the systems being managed. Administrators can easily gather, analyze, and react to this information. Real-time graphical performance monitoring allows you to monitor multiple systems, establish thresholds, and automatically execute programs/actions on threshold events.
• Messages enables users to view and manipulate messages on AS/400 systems; properties of a message can be displayed and replied to.
• File System enables users to work with file system properties, filtering, open AS/400 objects using PC programs.
• Printer Output allows users to work with printer output that is waiting to be printed (for example, actions include open, hold, release, move, and delete). Users can also change the properties of the output (such as, the printer, number of copies, priority, and the form type).
• A subset of the Advanced Function Presentation Workbench product called the AFP Viewer is included with the printer output capability. The AFP Viewer provides powerful viewing capabilities. The viewer allows users to view the contents of AS/400 printer output from the Printer Output list.
• User and User Group Administration user profiles can be created, changed, or deleted with the click of a mouse and easy-to-use dialog boxes. Users can be added to a group through drag-and-drop operations.
• A security wizard generates an administrator and user report. The administrator report shows recommended settings and how those settings affect the behavior of the system. The user report contains the information the users need to know about the system, such as password composition rules.
• Backup users can schedule daily, weekly, and monthly backups of remote AS/400 systems and, through easy-to-use panels, select what should be backed up, when to schedule it, and where to save it.
• Database Administration users can create and modify DB2/400 table definitions with the use of a Wizard. Administrators can easily set up ODBC configurations for other PCs in the network, create and change database object definitions, control access to database objects, back up database objects, organize file data to enhance performance, copy object definitions and data, and display data in tables and views.
• Resource Security and Security Policy enables resource information such as user's authority, public authority, owner, primary group, authorization list, default public authority for newly created objects (libraries only), sensitivity level (QDLS objects only), and security policy information to be changed easily.
• Hardware and Software Inventory can also now be displayed through a Windows, shell-based user interface.

Programming interfaces (such as, OLE OCXs) are also provided so application programmers can quickly and easily use these functions when developing their own applications for AS/400 PC servers.

• Graphical Access for AS/400 transforms "green screen" interfaces for programs such as OS/400, OfficeVision/400, AFP Utilities, Query/400, and many more, to an easy-to-use, point-and-click graphical interface. Graphical Access can also be used as the 5250 emulation program for running other AS/400 applications as well.
• Ability to use AS/400 printers as network printers or to use the AS/400 integrated file system for network drives is also tightly integrated into the client.
• Direct TCP/IP communications connectivity is also provided with this client software.
• A comprehensive online user's manual is integrated into the Windows 9x and NT desktop to make it easy to learn and understand the functions available when connecting to AS/400 systems.

Some functions shipped with AS/400 Client Access for Windows 95/NT cannot be used when connecting to AS/400 systems unless you have also acquired the AS/400 Client Access Family for Windows license for those systems. Lotus cc:Mail and the following functions require an AS/400 Client Access Family for Windows license to use:

• PC5250 display and print emulation
• SNA/APPC network support using NetSoft router
• TCP/IP network support using AnyNet
• Data Transfer

System Management Facilities

• System Managed Access Path Protection (SMAPP) SMAPP supports and automates the process of selecting which access paths should be protected. The system uses the EDTRCYAP value to estimate the amount of journaling to do. The shorter the time in this value, the more journaling takes place, thus impeding system performance, but it leads to shorter IPLs. The longer the value, the longer IPLs are, but the cost to runtime CPU and DASD utilization taken by journaling is less.
• Expert Cache Expert Cache provides a disk cache tuner option which allows the AS/400 to take advantage of available main storage capacity. It dynamically responds to system jobs to cache pages of data in main storage so reducing time to processor and disk I/O.
• System Availability Various functions are available to help maintain the availability of an AS/400. These include:
  • All AS/400s support an optional Uninterruptable Power Supply (UPS) to maintain power to the AS/400 during a site power loss.
  • Disk mirroring for the entire system or one individual auxiliary storage pool. If the entire system is mirrored, then double the disk capacity is needed. Additional disk controllers and placement of these controllers on separate buses can give even higher protection.
  • Journaling provides the capability to record all changes to records in a file as they occur. These journaled changes are applied to the file if the system is lost. This can be extended to cover access paths as well to provide faster recovery of access paths in the event of an abnormal system termination from Version 4 Release 2 and later with the implementation of remote journals.
  • Commitment Control ensures that if a transaction requires multiple database changes, all of them (or none of them) are made.
  • Auxiliary Storage Pools (ASPs) are individual disks reserved for particular objects (like individual libraries) which can be used to isolate those objects to assist in their recovery.
  • Save While Active function allows customers to continue to use applications while they are backed up, thus reducing the time they are unavailable and lessening the time to save.
  • RAID-5 disk protection can be implemented with the use of a disk controller and at least four disks to make up an array. Refer to the sections on RAID-5 for information on how this is implemented.

Application Development

• AS/400 Control Language The control language provides a consistent single interface to all system functions. Most commands can be executed both interactively and in a compiled CL program. CL programs provide a high degree of function in that they allow the use of variables, error handling, and access to the database.
• Runtime support is provided for languages such as ILE RPG/400, ILE COBOL/400, ILE C for OS/400, AS/400 PL/1, AS/400 Pascal, and AS/400 Basic.
• Procedures Language 400/REXX is implemented within OS/400. REXX is designed to facilitate the writing of clear, structured, interpreted procedures.

Database Support

The integrated database, DB2 for OS/400, provides stability and compatibility of previous releases of the AS/400 database with the standards-based technology required for a heterogeneous computing environment. DB2 for OS/400 provides compliance in the area of standards compliance coupled with advanced function, distributed capabilities, and performance. DB2 for OS/400 provides support for:

• Structured Query Language (SQL) standards conformance. Supplies the industry standard database access language conforming to the IBM SQL Version 1, ANSI X3.135.1992, ISO 9075-1992, and FIPS 127-2 standards. Support is provided for embedded static, dynamic, and extended dynamic SQL, together with IBM's Distributed Relational Database Architecture (DRDA), Microsoft's Open Database Connection (ODBC), and Apple's Data Access Language (DAL).
• Declarative referential integrity preventing conflicting data from being entered in the database.
• Stored procedures allowing the distribution of application workloads between a client and an application server.
• Triggers which cause automatic program execution before and/or after database modifications.
• Two-phase commit transaction management to allow access to multiple heterogeneous databases simultaneously.
• Data replication automatically in distributed DB2 family environment.
• System-wide database catalog allowing applications to query information concerning all objects on a system using a single system catalog. Multiple-level concurrency control providing read stability, cursor stability, uncommitted read, and no commit isolation levels.
• National Language Support to store data in a preferred language, character set (single and double byte), and a sort sequence.
• Security up to Level 50 (Level 50 provides C2 level of trust as defined by the U.S. Government publication DOD 5200.28-STD, Department of Defense Trusted Computer System Evaluation Criteria.)
• Application Development facilities are provided in the optional DB2 Query Manager and SQL Development Kit for AS/400 (5769-ST1) and the Application Developer's Toolset (5769-PW1) in Licensed Programs section.
• Multiple Operating Environments

In addition to the creation of native AS/400 applications, OS/400 allows the execution of applications or programs migrated from the System/36 and System/38 with few or no modifications required, or applications with a mixture of native and System/36 or System/38 function. This means that applications can be migrated into completely native AS/400 applications at a pace that suits the customer. See "System/36 Migration Aid, 5727-MG1" on page 352 and "System/38 Migration Aid, 5714-MG1" on page 349 of the Licensed Programs section.

Additionally on all PowerPC-based models of the AS/400, it is possible to run System/36 Operation System SSP Release 7.5 under OS/400, allowing System/36 applications to run unchanged on an AS/400.

Support for Central Site Maintenance

OS/400 provides many capabilities to assist in the maintenance of a network of AS/400 systems from one central site. These include:

• Most application objects can be saved on a system and restored to another AS/400 system at the prior release level. (Typically the support is from the current release to two release levels back.)
• Screen copy image allows the image on one screen to be sent through a network of AS/400s to another screen.
• Programs developed under CSP/AD (Cross System Product/Application Development) on an IBM S/390 can be run under CSP/AE (CSP/Application Execution) on an AS/400.
• Operations management functions can be performed using remote commands and display station passthrough (within OS/400) for AS/400 controlled networks and Host Command Facility (on S/370) to Distributed Host Command Facility (on AS/400 within OS/400) on S/370-controlled networks.

OS/400 Version 4 Change of Terms and Conditions

Beginning with Version 4 Release 1, OS/400 is included in the AS/400 Model 170, 6xx, 7xx, and Sxx systems price and licensed under the International Program License Agreement (IPLA). OS/400 Version 4 is software keyed to the designated serial number of the machine where it is initially installed. OS400 Version 4 is licensed to operate on only that serial number machine and may not be moved from one machine to another except in an emergency backup situation. Four documents, Proof of Entitlement (POE) , License Information Document (LID), International Program License Agreement (IPLA), and Software License Key Sheet are provided with the OS/400 software as proof of a valid license. In the event that the designated machine is transferred (or sold), OS/400 must transfer with it. You must notify the other party of the program's terms and provide the POE, LID, IPLA, and Software License Key Sheet documents for OS/400 to the purchaser. IBM licenses the other party when that party accepts the program's license terms by initial use of the program. Your OS/400 license is then terminated.

When ordering upgrades to software licensed under the IPLA, such as OS/400, a copy of the POE should be provided to your IBM representative or IBM Business Partner to validate the license to the software.

To operate on the designated serial number machine, OS/400 Version 4 requires a unique OS/400 license authorization code supplied by IBM. The OS/400 License Authorization Code is preloaded by IBM on new AS/400 system purchases. In the case of a hardware upgrade to a Version 4 system or a software-only upgrade to OS/400 Version 4, the OS/400 License Authorization Code provided by IBM must be entered at the time of installation. OS/400 Version 4 will operate for 70 days without the License Authorization Code. During those 70 days, the system will generate daily warning messages requesting that the customer obtain an OS/400 License Authorization Code from IBM. After 70 days, users will not be permitted to sign on to the system. A valid OS/400 License Authorization Code is required to reset the 70 day period. For software-only OS/400 Version 4 orders, the OS/400 License Authorization Code will be ordered from IBM. Contact your IBM representative or IBM Business Partner for ordering information.
-------------- Curbstone Home Page ----------------

Software Subscription

With the announcement of Software Subscription the way in which customers pay for upgrading to new versions or releases of AS/400 software has changed. Customers must purchase Software Subscription when they move to Version 4 in order to upgrade to new versions or releases. Software Subscription is available at a monthly charge (billed quarterly) or with prepayment options for between 1 and 5 years.

The price of Software Subscription is the same no matter what software has been licensed to a system. Most AS/400 stacked software is covered by Software Subscription. Customers who do not take out Software Subscription when they install Version 4 must either re- license the software or pay the Currency Access Fee of Software Subscription in order to join if they wish to upgrade to a new version or release.

For further information on Software Subscription, contact your IBM Sales Representative or refer to the appropriate announcement letter. For more information on Software Subscription, you can also refer to:

http://iws.as400.ibm.com/sftsol/subscription.htm

A current list of program products covered by Software Subscription may be found at: