Many CA products are being converted to use Pass Phrase passwords.
Our site is implementing the following improvements for RACF:
allow special characters A-Z a-z 0-9 .<+|&!*-%_>?:= #$@ and spaces
allow mixed case
allow 100 characters pass phrase
upgrade password encryption from DES to KDFAES
However, the CA Gen Server Client Security Validation Exit TIRSECV is limited to 64 bytes:
03 CLIENT-PASSWORD PIC X(64)
Unfortunately, this will hold up our users to move to longer passwords on z/OS.
Please consider this as an important enhancement idea.
Tax and Customs Administration of the Netherlands / Information Technology