ubject: Re: Enabling the KDFAES encryption algorithm for the RACF Database
Hi
We have implemented it for a while now. Activated KDFAES with SETR command
and password expiration did the rest.
Regards
Jack
On Fri, Apr 25, 2025, 20:12 Jasi Grewal <
040674ae00fc-dmarc-requ...@listserv.
Mainframe Discussion List On Behalf Of
Jack Zukt
Sent: Monday, April 28, 2025 3:15 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: [EXTERNAL] Re: Enabling the KDFAES encryption algorithm for the RACF
Database
Hi Bob,
Thank you for your feedback. You are right about that. However, at the time,
those that
we've never had to do.
>
> Regards, Bob
>
> Robert S. Hansel
> Lead RACF Specialist
> RSH Consulting, Inc.
> 617-969-8211
> www.linkedin.com/in/roberthansel
> www.rshconsulting.com
>
> -Original Message-
> Date:Sun, 27 Apr 2025 22:34:54 +0100
>
ansel
Lead RACF Specialist
RSH Consulting, Inc.
617-969-8211
www.linkedin.com/in/roberthansel
www.rshconsulting.com
-Original Message-
Date:Sun, 27 Apr 2025 22:34:54 +0100
From:Jack Zukt
Subject: Re: Enabling the KDFAES encryption algorithm for the RACF Database
Hi
We have implemen
Hi
We have implemented it for a while now. Activated KDFAES with SETR command
and password expiration did the rest.
Regards
Jack
On Fri, Apr 25, 2025, 20:12 Jasi Grewal <
040674ae00fc-dmarc-requ...@listserv.ua.edu> wrote:
> Greetings,
>
>
> We are planning to migrate to the KDFAES encryption
Answers below
W dniu 25.04.2025 o 21:11, Jasi Grewal pisze:
Greetings,
We are planning to migrate to the KDFAES encryption algorithm for the RACF
database and would like to know if you have followed a similar process.
Many installations did it many years ago.
Please review the steps belo
Hi Jasi,
Was ICHDEX01 implemented to continue to support masked passwords? You will need
to identify and convert any masked passwords to DES before activating KDFAES. I
recommend you remove the exit before proceeding with KDFAES activation to
confirm all masked passwords have been addressed.
U
