Idea Details

Using pass phrase passwords with CA Gen

Last activity 06-22-2020 03:26 PM
M B's profile image
By: M B
09-10-2019 02:10 PM

​Many CA products are being converted to use Pass Phrase passwords. 

Our site is implementing the following improvements for RACF:

  • allow special characters A-Z  a-z  0-9  .<+|&!*-%_>?:=  #$@ and spaces

  • allow mixed case

  • allow 100 characters pass phrase

  • upgrade password encryption from DES to KDFAES 

However, the CA Gen Server Client Security Validation Exit TIRSECV is limited to 64 bytes:
03 CLIENT-PASSWORD                  PIC X(64)
Unfortunately, this will hold up our users to move to longer passwords on z/OS.
Please consider this as an important enhancement idea. 

Best regards,

Mieke B.
Tax and Customs Administration of the Netherlands / Information Technology

​​


Comments

06-09-2020 05:34 PM

We need the ability to pass a longer password from client to server through the Client Manager.  ​​The industry is moving towards the use of a passphrase, hopefully Broadcom will be a leader in adapting.

06-09-2020 04:02 PM

I've posted a survey to the CA Gen Community regarding password requirements. I'd love to have your feedback. You can reply to the discussion board or email me at Kim.Peelman@broadcom.com.

06-09-2020 12:42 PM

​​The industry is moving towards the use of passphrase. Hopefully Broadcom will be a leader in adapting. We need the ability to pass a longer password from client to server through the Client Manager.

05-21-2020 08:25 AM

​In addition to the security exit, we will need the abilty to pass a longer password from client to server through the Client Manager.