Top Secret Files That Include ACID And Password.

book

Article ID: 221964

calendar_today

Updated On:

Products

CA Top Secret

Issue/Introduction

Which Top Secret files include the password within them for user ACIDs (ie AIX, PATH, VSAM, DATA) ?

Environment

Release : 16.0

Component : CA Top Secret for z/OS

Resolution

The users’ passwords are stored on the BDAM security file and the backup BDAM security file. The passwords are not in the AIX, PATH, or VSAM security (or VSAM backup) files. 

When a password is changed either via a user signon or an administrator, a command is stored in the Top Secret recovery file (with the password encrypted). This is in case the security file becomes unusable and forward recovery needs to be run. The recovery file is a wrappable file, meaning once it fills up, new records are written at the beginning of the file, overlaying the old records.