IBM Z Hardware and Operating Systems Ideas Portal


This is the public portal for all IBM Z Hardware and Operating System related offerings. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

RACF

Showing 160

To allow configured the parameter "revoked after unsuccessful password attempts" in the RACF user profile. Actually it is only possible as a generic rule for all the users through the SETROPTS PASSWORD(REVOKE(d)) command

To avoid a DoS (Deny of Service) due a service user revoked because a wrong use of the password causing impact in the applications & services using it.
11 months ago in z/OS / RACF 1 Not under consideration

Change DSMON to repot on dynamically loaded RACF exits

I'm sure this was been asked before and will probably be rejected BUT it would be nice for program ICHDSM00 to be able to report on and handle dynamically loaded RACF exits.
about 2 years ago in z/OS / RACF 1 Not under consideration

RACF search filters should not consider wildcards (*) as a character towards the 8 character limit

Often, when using products like LDAP, wildcard filters are used to return a number of matching entries. RACF user IDs have an 8 character limit so a client would expect that a search for *1234567* would work, since a * can be nothing or something ...
4 months ago in z/OS / RACF 1 Not under consideration

HealthCheck for RACF Class PROGRAM

In RACF-Class PROGRAM there are PROFILEs with MEMBER-Definitions,for example Profile ** with Members (for example) DB2.OLD.VERSION.SDSNLOAD.I would likte to get an automatic health-check of this RACF-Class. Maybe an Extention to IBMRACF,RACF_SENSI...
about 6 years ago in z/OS / RACF 4 Not under consideration

RACF DELGROUP FORCE, and message enhancements

The usability of the RACF command DELGROUP could be improved. Also the error messages are useless and inaccurate. I want to be able to run a script to define RACF resources, and have a script to clean up. For most resources I can do this. I cannot...
over 2 years ago in z/OS / RACF 2 Not under consideration

Enhance RACF so a Passticket Only UserID is possible

Please enhance RACF so that we have a new attribute of let's call it PASSTICKET or PASSTICKETONLY We use passtickets and for security reasons don't want the UserIDs to also have to have a password.
about 7 years ago in z/OS / RACF 1 Not under consideration

RLIST for specific profile '*'

The RLIST command treats the asterisk as a wildcard. If a profile is named '*' then the command will list all profiles not just that one. Please enhance the RLIST command to allow the list of one specific profile especially a profile named '*'
over 2 years ago in z/OS / RACF 3 Not under consideration

RACF LISTUSER command to show GROUP connects in alphabetical order

Imagine you are requesting access to a z/OS lpar, and you have a long list of GROUP connects to request. As your access requests are processed, you can go back to the system and issue the RACF LISTUSER command to confirm the GROUP connects are cor...
5 months ago in z/OS / RACF 1 Not under consideration

Create RACF resource for using parameter ONLYAT on command without beeing SPECIAL

In our customer environment, we have 3 sysplexes (test, acceptance and Production) with 3 KSystem --> 6 RACF database.Without SPECIAL attribute, it's not possible to use parameter ONLYAT on RACF cmds to address only one RACF database on a RRSF ...
over 4 years ago in z/OS / RACF 2 Not under consideration

Support NORACF in Conjunction with MFA Keyword when using LISTUSER Command

Currently, using RACF's LISTUSER command does not support the MFA keyword when specified alongside NORACF. After opening a defect with z/OS Security Support, I was requested to submit an Idea. I believe the MFA segment should work as every other s...
over 1 year ago in z/OS / RACF 3 Not under consideration

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.