ACF2/CICS: CESL allows PASSPHRASE change at logon even with SIGNON NEWPASS=NO in the ACF2PARM dataset
search cancel

ACF2/CICS: CESL allows PASSPHRASE change at logon even with SIGNON NEWPASS=NO in the ACF2PARM dataset

book

Article ID: 231748

calendar_today

Updated On:

Products

ACF2 - z/OS ACF2 ACF2 - MISC

Issue/Introduction

ACF2/CICS PASSPHRASE SIGNON is using CESL, but there is a need to remove the ability to change the passphrase at logon time.
SIGNON NEWPASS=NO was specified but the passphrase was still allowed to be changed at logon time.

 

Environment

Release : 16.0

Component : ACF2 for z/OS

Resolution

The ACF2 parameter SIGNON NEWPASS=NO is only checked when ACFAEUSC (or other Broadcom supplied program) is the program processing the CESL request. DFHSNP does not process this option.

This is documented in the ACF2 documentation under SIGNON-Sign-on Control Options

Note: SIGNON NEWPASS=NO is valid for both password and passphrase

Powered by Wolken Software