Skip to Main Content
IBM Z Hardware and Operating Systems Ideas Portal


This is the public portal for all IBM Z Hardware and Operating System related offerings. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

RACF

Showing 209

Request for change to Management of PKCS11 tokens ICSF panel

We are trying to setup on a z/OS LPAR a client-server platform (e.g. Pcomm client to TN3270 server or browser to HTTP server) fully compliant with FIPS 140-2 requirements. To accomplish this task, all TCP/IP AT-TLS policies, security levels and ci...
over 5 years ago in z/OS / RACF 4 Not under consideration

Store the entire RACF DB in central storage

While it's great that we have coupling facility support available for RACF, just store the entire contents of the database in central storage (i.e. memory). Consider this RFE a discussion point for such a serious design change to RACF. Keep it on ...
almost 9 years ago in z/OS / RACF 2 Not under consideration

Provide NOTERMUACC Functionality Equivalent for SERVAUTH

Please look to provide a functional equivalent of the NOTERMUACC Parameter on UserIDs/Groups for the SERVAUTH class, specifically NETACCESS in particular. This could potentially be achieved by expanding the NOTERMUACC Parameter to cover SERVAUTH c...
about 9 years ago in z/OS / RACF 2 Not under consideration

Auto-RACLIST specific general resource classes

It would be nice if RACF would auto-RACLIST specific general resource classes if they were active and RACLIST required.
over 7 years ago in z/OS / RACF 1 Not under consideration

List of restricted words in password rules

There are some obvious passwords that are very easy to guess, and is important to avoid using them. The idea is to have a list of restricted words that cannot be part of a password and that RACF will not accept. This list must be configurable t...
almost 2 years ago in z/OS / RACF 1 Future consideration

Honour the CLIST keyword on SEARCH when UID is specified

The SEARCH command in RACF does not honour the CLIST keyword if UID is specified. This is documented behaviour insofar as the manual states that all other keywords are ignored if UID is specified. However it is very unhelpful and could simply be a...
almost 2 years ago in z/OS / RACF 1 Not under consideration

RACF Profile list for APF authorized libraries

Utility that will check who has access (and what levels) to the APF libraries. Should list profiles that control the access as wellSensitive access HC doesn't go to the Access level (just read or update).
over 9 years ago in z/OS / RACF 3 Not under consideration

Enrich message ICH70001I with the number of attempts.

Asis: ICH70001I userid LAST ACCESS AT hh:mm:ss ON www, month, day, 19yy This message is issued when the Resource Access Facility (RACF) RACINIT service is invoked to initialize RACF processing for a new address space. The first time this user ("us...
almost 10 years ago in z/OS / RACF 2 Not under consideration

Enhance RACF to allow PERMITs with WHEN(PROGRAM) for zSecure custom general resource classes

I would like the ability to use conditional permits with a custom class for zSecure Command Verifier. In my case rather than use XFACILIT for zSecure Command Verifier we have opted to use our own general resource class by defining it to the CDT cl...
about 8 years ago in z/OS / RACF 2 Not under consideration

Better Auditing for IRR.DIGTCERT.LISTRING

IRRADU00 ACCESS SUCCESS record for calls to FACILITY IRR.DIGTCERT.LISTRING does not show the actual RING Name. Please require RACROUTE callers to specify a RingName that can be viewed in the IRRADU00 unloaded output. Suggestion is for use of the L...
about 8 years ago in z/OS / RACF 2 Not under consideration