New: MQ Authenticate User Security Exit for z/OS v2.0.0

Capitalware Inc. would like to announce the official release of MQ Authenticate User Security Exit for z/OS v2.0.0. This is a FREE upgrade for ALL licensed users of MQ Authenticate User Security Exit for z/OS. MQ Authenticate User Security Exit for z/OS is a solution that allows a company to fully authenticate a user who is accessing a WebSphere MQ for z/OS resource. It authenticates the user’s UserID and Password against the native z/OS system or an encrypted MQAUSX FBA file.

For more information about MQ Authenticate User Security Exit for z/OS go to:
https://www.capitalware.com/mqausx_zos_overview.html

Changes for MQ Authenticate User Security Exit for z/OS v2.0.0:

    Server-side:

  • z/MQAUSX server-side security exit defaults to use AES 256-bit encryption for user credentials
  • Added keyword UseAllowHostname and AllowHostname to only allow hosts by name (reverse lookup of incoming IP address)
  • Added keyword UseRejectHostname and RejectHostname to explicitly reject a hostname (reverse lookup of incoming IP address)
  • Added keyword UseAllowHostByName and AllowHostByName to only allow hosts by name
  • Added keyword UseRejectHostByName and RejectHostByName to explicitly reject a hostname
  • Added keyword SystemLogMessage to control what type of messages (‘accepted’ and/or ‘rejected’) are written to system log
  • Added keywords UseGroups, Groups & GroupFile
  • Added program CWDSPVER to display the product version number
  • Added code in the Ini parser to distinguish between ‘ABC’ and ‘ABCDEF’ keywords
  • ENCPWD program defaults to use AES 256-bit encryption
  • Added keyword UseFormFeed (z/OS only) to issue a FormFeed command once a day at midnight
  • Increased the accepted IniFile parameter length from 1024 to 2048 characters
  • Updated the “Connection accepted” log record to include the UserID set for the connection.
  • Updated MCC logic so that a command server failure does not affect the exit.
  • Changed MCCRedoCount default value from 1000 to 5000
  • Fixed a bug with ConnectionName when both IPv4 and IPv6 stacks are used
  • Fixed a bug with UseAuthOrder and AuthOrder
  • Fixed a bug in the in-memory Ini parser
  • Fixed a bug with Proxy file processing
  • Fixed a bug in the AllowSSLDN processing
  • Fixed a bug in CWCHAD when NoAuth is used
  • Fixed a bug with SSLPeerNamePtr field.
  • Tested with WMQ v7.1

Regards,
Roger Lacroix
Capitalware Inc.

This entry was posted in Capitalware, IBM MQ, MQ Authenticate User Security Exit, Security, z/OS.

Comments are closed.