IBM Z Software
Hide about this portal


This portal is to open public enhancement requests against IBM Z Software products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

Z Multi-Factor Authentication

Showing 19

Improve problem detection and system responses that allows procedures to respond timely to problems

a) the STCs must internally check in intervalls for misconfiguration and/or error-situations like:- the web-components for STC AZF#IN01 are not available (e.g. because they are not mounted or accidently deleted or moved*) -> this would cause at...
over 4 years ago in zSecurity / Z Multi-Factor Authentication 0 Delivered

Add the Information about PassTicket usage of MFA provisioned users in RACROUTE REQ=VERIFY exit parameter-list

We have currently no information in RACROUTE REQ=VERIFY exit if an MFA user with factor AZFPTKT1 has used a PassTicket. I expect RIXPTAUT, which indicates that the user is being authenticated by a PassTicket is useful, but RIXPTAUT is in this case...
almost 3 years ago in zSecurity / Z Multi-Factor Authentication 1 Delivered

Allow Enter key to mimic Submit key in MFA logon web site

IBM Z Multi-Factor Authentication web access only allows user to click Submit to obtain their MFA token. It is normal practive to be able to press Enter key to do the same thing.Can this be changed to allow this function?
about 4 years ago in zSecurity / Z Multi-Factor Authentication 1 Delivered

Out-of-band Webpage to display RACF Password expiry warning (Similar to 'ICH70002I YOUR PASSWORD WILL EXPIRE IN nnn DAYS' message in TSO)

IBM Z Multi-Factor Authentication V2.1 Authentication factors: Generic RADIUS (AZFRADP1) & Password (AZFPASS1) Out-of-band Authentication RACF option PASSWORD(WARNING) is enabled. When a non-MFA enabled user successfully logs in to TSO, the ...
almost 3 years ago in zSecurity / Z Multi-Factor Authentication 1 Delivered

Display generated token non-readable by default.

We are testing with MFA V2R0 for z/OS and are using the certificate based authentication (factor AZFCERT1). All works fine … however our auditors would like to have the generated token which is used instead of a password to be non-readable. This t...
about 5 years ago in zSecurity / Z Multi-Factor Authentication 0 Delivered

Support PASSWORDPREPROMPT with MFA

System: MFA v2 MFA v2 improves logon security by requiring a second (or more) authentication mechanism. Description: We will be using MFA for access to a particular application in CICS, and expect this to roll out to other applications, some of wh...
over 5 years ago in zSecurity / Z Multi-Factor Authentication 0 Delivered

Certificate Based Authentication for console interfaces

System: console interfacesActor: System Administrator or Security Administrator Console interfaces are commonly used to manage the configuration and availability of information system components; servers, facilities, application systems, etc.. Des...
over 9 years ago in zSecurity / Z Multi-Factor Authentication 3 Delivered

Support RSA Securid REST API for communication to RSA Authentication Manager

We are implementing the z/VM feature of this product, using the RSA Securid authentication method. We have found that it using the very old UDP securid (symmetric DES) to communicate with the RSA Authentication Manager. This is widely considered i...
over 4 years ago in zSecurity / Z Multi-Factor Authentication 0 Delivered

Requirement to invalidate a compromised CTC

In the event a reusable Cache Token Credential (CTC) becomes compromised, we need to be able to invalidate it. Currently, a reusable CTC only becomes invalid when its age exceeds the TOKENTIMEOUT value. The function should invalidate all CTCs for ...
over 4 years ago in zSecurity / Z Multi-Factor Authentication 0 Delivered

Customize webpages for Out-of-band

We run the MFA out-of-band task in 3 different plexes (sandbox, development and prod) and all the webpages for Out-of-band looks the same(no info about "where am I"). The only way to spot this is by reading the url.. The only thing I've found so f...
over 6 years ago in zSecurity / Z Multi-Factor Authentication 0 Delivered

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.