Retrieve password for conversion to RACF?

book

Article ID: 16009

calendar_today

Updated On:

Products

CA Top Secret CA Top Secret - LDAP

Issue/Introduction

Can you extracting a users password for the purpose of converting to RACF?



We are in process of converting from CA Top Secret to RACF. Based on the documentation  PWVIEWoption is no longer available.

Is there an alternate method to get the passwords?

Environment

Release:
Component: TSSMVS

Resolution

Currently there is no way to view or extract the password. That functionality was considered a security hole which is why it was removed a while back. This is why PWVIEW is on longer valid.

We imploy one way encryption. We dont decrypt. When you enter your password, we encrypt it first. Then we compare the encrypted password with the encrypted password stored on the security file. That is how we validate passwords. We never decrypt them for any reason once they are encrypted.