Skip to Main Content
IBM Z Software


This portal is to open public enhancement requests against IBM Z Software products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

Status Delivered
Categories Explorer
Created by Guest
Created on Nov 20, 2017

In CICS TS, for CICS Explorer, provide form-based authentication

CICS TS, CICS Explorer

In our organization, the CICS TS Sytems Programmers are using CICS Explorer for a variety of functions. The choices for user authentication to a CICS TS region for us so far are Basic Authentication, or Client Certificate Authentication.

However, they both present issues:
a. Basic Authentication is prohibited by security compliance (credentials in a header), and always flagged for security vulnerability.
b. Client Certificates - needed one per each user, either added to RACF to an user id, or mapped with name filtering to an user id. They add unnecessary cost and complexity to the environment. They are difficult to administer. They present challenges at certificate renewal. Mapping with name filtering is still exposed to spoofing.

IBM should provide a form-based authentication from CICS Explorer to CICS TS, with SAF (RACF) as an user repository, where an encrypted token is created and passed during a session. This should be similar to the form-based authentication for the WebSphere admin console.

Idea priority High
  • Guest
    Reply
    |
    Dec 14, 2018

    This RFE is satisfied by CICS Transaction Server for z/OS V5.5 which is GA today 14th December 2018.

  • Guest
    Reply
    |
    Oct 2, 2018

    This RFE is satisfied by CICS Transaction Server for z/OS V5.5 which is announced today 2nd October 2018 and which has a planned availability date of 14th December 2018.
    For more information see the CICS TS V5.5 announcement letter https://www-01.ibm.com/common/ssi/ShowDoc.wss?docURL=/common/ssi/rep_ca/2/897/ENUS218-352/index.html&request_locale=en