Skip to Main Content
IBM Z Software


This portal is to open public enhancement requests against IBM Z Software products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

Status Not under consideration
Categories General ES
Created by Guest
Created on Feb 12, 2014

propagate end user identity in an SOA environment build on DataPower when calling IMS Connect to invoke IMS transactions

Need to propagate original network ID of end user through SOA ESB to IMS for logging / audit purpose. Original Network ID may be Active Directory, SAML, OAUTH, X.509, etc.. Passing through SOA ESB implemented with DataPower XI50b that ID may be translated to a SAML token, a RACF id, ICRX token or pass phrase used by IMS to authenticate and authorize the request. We need the original identity of the user carried along for inclusion in log records or for use by the application. Our preference is to not have an individual RACF id that corresponds to Jane's AD ID. This forces us to synchronize passwords between AD and RACF which we would like to avoid as it introduces additional complexity and/or latency into process.

We also need that original identity propagated when IMS itself makes a call, whether to other z/OS systems such as CICS or back to the DataPower ESB even if the authorizing credentials in the outbound request are, as above, a certificate or token that does not identify the original requester.

Another reason to not rely on a RACF ID to pair with every AD ID is that on outbound calls from IMS the receiving system may not use a RACF ID for authorization or authentication and may require another type of security token from the one used between DataPower and IMS Connect.

Idea priority High
  • Guest
    Reply
    |
    Dec 6, 2018

    Hi Steve,

    Thank you for your interest in keeping IMS a vital and successful product. Software development has continuously evolved during IMS's lifetime, and so has IMS itself. We have kept pace with, adopted, and implemented many industry standard best practices within our organization, including Continuous Delivery, Design Thinking, and Agile.

    When choosing new features to add from the list of requirements in our backlog, we assess which will bring the most value to as many clients as possible and prioritize those.

    At this time, after reviewing this request for enhancement and assessing its potential value, we have decided to reject it. The reason we are rejecting this RFE is due to higher priority items preventing us from delivering this within 18 months.You are welcome to resubmit this RFE at a later date and we will reconsider.

    We appreciate your input to IMS, and we hope that you will continue to submit ideas for improvements as customer feedback is a key component to shaping the future direction of IMS.

    Thank you.

    Sincerely
    Swetha Sridharan
    swetha.sridharan@ibm.com