Capitalware Inc. would like to announce the official release of MQ Authenticate User Security Exit for z/OS v2.0.0. This is a FREE upgrade for ALL licensed users of MQ Authenticate User Security Exit for z/OS. MQ Authenticate User Security Exit for z/OS is a solution that allows a company to fully authenticate a user who is accessing a WebSphere MQ for z/OS resource. It authenticates the user’s UserID and Password against the native z/OS system or an encrypted MQAUSX FBA file.
For more information about MQ Authenticate User Security Exit for z/OS go to:
https://www.capitalware.com/mqausx_zos_overview.html
Changes for MQ Authenticate User Security Exit for z/OS v2.0.0:
- Server-side:
- z/MQAUSX server-side security exit defaults to use AES 256-bit encryption for user credentials
- Added keyword UseAllowHostname and AllowHostname to only allow hosts by name (reverse lookup of incoming IP address)
- Added keyword UseRejectHostname and RejectHostname to explicitly reject a hostname (reverse lookup of incoming IP address)
- Added keyword UseAllowHostByName and AllowHostByName to only allow hosts by name
- Added keyword UseRejectHostByName and RejectHostByName to explicitly reject a hostname
- Added keyword SystemLogMessage to control what type of messages (‘accepted’ and/or ‘rejected’) are written to system log
- Added keywords UseGroups, Groups & GroupFile
- Added program CWDSPVER to display the product version number
- Added code in the Ini parser to distinguish between ‘ABC’ and ‘ABCDEF’ keywords
- ENCPWD program defaults to use AES 256-bit encryption
- Added keyword UseFormFeed (z/OS only) to issue a FormFeed command once a day at midnight
- Increased the accepted IniFile parameter length from 1024 to 2048 characters
- Updated the “Connection accepted” log record to include the UserID set for the connection.
- Updated MCC logic so that a command server failure does not affect the exit.
- Changed MCCRedoCount default value from 1000 to 5000
- Fixed a bug with ConnectionName when both IPv4 and IPv6 stacks are used
- Fixed a bug with UseAuthOrder and AuthOrder
- Fixed a bug in the in-memory Ini parser
- Fixed a bug with Proxy file processing
- Fixed a bug in the AllowSSLDN processing
- Fixed a bug in CWCHAD when NoAuth is used
- Fixed a bug with SSLPeerNamePtr field.
- Tested with WMQ v7.1
Regards,
Roger Lacroix
Capitalware Inc.