Skip to Main Content
IBM Z Hardware and Operating Systems Ideas Portal


This is the public portal for all IBM Z Hardware and Operating System related offerings. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

My ideas: RACF

Showing 228 of 3549

Determine why User ID is REVOKED. Excessive Password Violations or Administrative Revoke

Note: It was suggested I open this RFE with RACF and zSecure. There will be 2 identical RFEs one for each product. There is no way to determine why a User ID is REVOKED. When an administrator looks at a User ID that is revoked, there is not anyway...
over 3 years ago in z/OS / RACF 1 Future consideration

Change DSMON to repot on dynamically loaded RACF exits

I'm sure this was been asked before and will probably be rejected BUT it would be nice for program ICHDSM00 to be able to report on and handle dynamically loaded RACF exits.
over 2 years ago in z/OS / RACF 1 Not under consideration

RRSF: Password/passphrase re-synchronization

With the implementation of RRSF, it is possible to synchronize a user's password/passphrase between different RACF databases. Due to various technical reasons, sometimes a user's password/passphrase may get out of sync in such a RRSF environmen...
5 months ago in z/OS / RACF 1 Not under consideration

Enhance RACF so a Passticket Only UserID is possible

Please enhance RACF so that we have a new attribute of let's call it PASSTICKET or PASSTICKETONLY We use passtickets and for security reasons don't want the UserIDs to also have to have a password.
over 7 years ago in z/OS / RACF 1 Not under consideration

HealthCheck for RACF Class PROGRAM

In RACF-Class PROGRAM there are PROFILEs with MEMBER-Definitions,for example Profile ** with Members (for example) DB2.OLD.VERSION.SDSNLOAD.I would likte to get an automatic health-check of this RACF-Class. Maybe an Extention to IBMRACF,RACF_SENSI...
over 6 years ago in z/OS / RACF 4 Not under consideration

RACF Validation of External JWT for CICS Provider RESTFul and Web Services

CICS RESTFUL and WEB Services most commonly execute in provider modes, receiving messages from external sources. A facility in RACF to validate JWT for CICS Web Services and RESTFUL from externally provided JWT would enable CICS applications to be...
over 4 years ago in z/OS / RACF 0 Future consideration

RACF DELGROUP FORCE, and message enhancements

The usability of the RACF command DELGROUP could be improved. Also the error messages are useless and inaccurate. I want to be able to run a script to define RACF resources, and have a script to clean up. For most resources I can do this. I cannot...
about 3 years ago in z/OS / RACF 2 Not under consideration

Enhance SERVAUTH EZB.PORTACCESS SAF checks to capture the name of the REAL program calling for the port in an 80 record & ICH408I message

When something is abusing the port finding the calling program is not always that easy. So I think it should be possible for z/OS Comm Server itself to record that informaiton somewhere in the type 80 record. It would also be beneficial to add it ...
11 months ago in z/OS / RACF 1 Not under consideration

Create RACF resource for using parameter ONLYAT on command without beeing SPECIAL

In our customer environment, we have 3 sysplexes (test, acceptance and Production) with 3 KSystem --> 6 RACF database.Without SPECIAL attribute, it's not possible to use parameter ONLYAT on RACF cmds to address only one RACF database on a RRSF ...
almost 5 years ago in z/OS / RACF 2 Not under consideration

IRRADU00 support for IBM MFA SMF Type 83 subtype 7

IRRADU00 should support SMF Type 83 subtype 7 records created by IBM MFA. Currently, I seeIRR67654I The SMF record type 83 subtype 7 for product 5655MFA01 - IBM Multi-Factor Authentication for z/OS with FMID is unknownIRR67581I The failing record,...
almost 4 years ago in z/OS / RACF 0 Future consideration