ACF2

 View Only
  • 1.  ACF2 - Force using of Passwordphrase

    Posted Feb 02, 2021 09:39 AM
    Can ACF2 be forced to accept only a Passwordphrase (disable using a Password for example by a GSO Option). We would appreciate not to use a ACF2-Exit.

    best regards, Ewald


  • 2.  RE: ACF2 - Force using of Passwordphrase

    Broadcom Employee
    Posted Feb 03, 2021 12:38 PM
    PWPONLY|NOPWPONLY
     
    When PWPONLY is on, users must logon using a password phrase. Passwords will no longer be allowed.
    When PWPONLY is on:

        Logonids with the SECURITY attribute can still logon using a password.
        Logonids with the PWPORPWD attribute can still logon using a password.
        PassTickets will still be allowed.
        Multi-factor logon credentials for CA Advanced Authentication Mainframe or
        IBM Multi-Factor Authentication will still be allowed.

    PWPONLY is mutually exclusive with NOALLOW. NOPWPONLY is the default.
     Do not set PWPONLY on unless all users have a valid password phrase.
     Make sure the GSO TSO record specifies PWPHRASE so that password phrases can be used during TSO logon.
     Once PWPONLY is turned on, users will not be able to log onto any applications that do not support password phrases.
    Details At :

    Asim Zaidi

    Technical Support Engineer | Mainframe Division

    Broadcom


    office: +1 604-233-8605

    Asim.Zaidi@broadcom.com | broadcom.com


    This electronic communication and the information and any files transmitted with it, or attached to it, are confidential and are intended solely for the use of the individual or entity to whom it is addressed and may contain information that is confidential, legally privileged, protected by privacy laws, or otherwise restricted from disclosure to anyone else. If you are not the intended recipient or the person responsible for delivering the e-mail to the intended recipient, you are hereby notified that any use, copying, distributing, dissemination, forwarding, printing, or copying of this e-mail is strictly prohibited. If you received this e-mail in error, please return the e-mail to the sender, delete it from your computer, and destroy any printed copy of it.