Can Mixed Case Password be detected By Other Products like CICS with CA Top secret?

Document ID : KB000011659
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

 

From the CICS documentation we can read:

User IDs and passwords specified in the CESN transaction are translated to uppercase, ignoring the setting of the UCTRAN attribute.

 

However, if support for mixed case passwords is active in the external security manager, CICS saves the value of the UCTRAN option and temporarily sets it to UCTRAN(NO) while the user is prompted to enter a userid and password.

 

CESN then uppercases the userid but leaves the password in the case entered by the user. 

 

When the CESN transaction completes, the UCTRAN attribute is restored to its original value. If the user disconnects from the terminal before the CESN transaction has completed, the terminal might be left with the UCTRAN(NO) attribute set. 

Question:

 

Can Mixed Case Password be detected By Other Products like CICS with CA Top secret

Answer:

 

Yes, any other vendor product can check the RCVTPLC bit in the RCVT which indicates that lower case passwords can be used.

 

So, it works with CICS as indicated.

Additional Information:

 

You can also read technical documents TEC435553 and TEC535167 to have more information about the mixed case password feature.