Skip to Main Content
IBM Z Software


This portal is to open public enhancement requests against IBM Z Software products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

Status Future consideration
Created by Guest
Created on Nov 4, 2015

Omegamon Reflex Automation Security not alined with z/OS Security requirements

The existing Security Management implemented for Reflex Automation was not aligned with basic z/OS security concept.
Today if a customer enable the function to propagate the TEP end user that is executing a TEP "TAKE ACTION" on a z/OS Omegamon Agent, this will force the infrastructure to associate a userid also for the Reflex automation actions.

The reflex Automation capability available within a situation was and is always considered an automation capability provided by our Omegamon suite, an automated action executed when a specific situation is detected should always be executed to prevent problems or critical situations.

Enabling the userid propagation for the TEP TAKE ACTION, will force the infrastructure to use as userid that require a specific Reflex automation action the userid of the TEP User that updated the last time the related situation.
This userid can be an userid of a person that:
- just has the userid revoked for many reason
- is not authorized to execute a z/OS command
- changed role recently and is not yet authorized to execute z/OS command
- left the company and for this reason his or her userid was removed from RACF
This behavior will make reflex automation unusable or at high risk. Something that is working today cannot work tomorrow for multiple different reasons.

Idea priority Urgent
  • Admin
    Ashok Mahay
    Reply
    |
    Jun 7, 2024

    Hello, thank you for opening this product enhancement request. I am pleased to announce this enhancement has been delivered. Please reach out if you have any further questions. Regards IBM OMEGAMON Product Management

  • Guest
    Reply
    |
    Jan 10, 2019

    Due to processing by IBM, this request was reassigned to have the following updated attributes:
    Brand - Servers and Systems Software
    Product family - z Systems Software
    Product - Tivoli Management Services on z/OS
    Component - Product functionality
    Source - Other

    For recording keeping, the previous attributes were:
    Brand - Servers and Systems Software
    Product family - z Systems Software
    Product - OMEGAMON for z/OS
    Component - Product functionality
    Source - Other

  • Guest
    Reply
    |
    Jun 8, 2016

    Due to processing by IBM, this request was reassigned to have the following updated attributes:
    Brand - Servers and Systems Software
    Product family - z Systems Software
    Product - Tivoli OMEGAMON XE on z/OS
    Component - Product functionality
    Source - Other

    For recording keeping, the previous attributes were:
    Brand - Servers and Systems Software
    Product family - z Systems Software
    Product - Tivoli OMEGAMON DE on z/OS
    Component - Product functionality
    Source - Other