Re: [ADSM-L] Strong TSM Passwords?
2012-07-24 10:53:51
I have not personally submitted an enhancement request. I have requested
it in a few different meetings with IBM/TSM people. It's been a while
but I think one of them was going to submit one on my behalf. I searched
the RFE page and the only related one is tying it to LDAP for passwords,
so I submitted one.
RFE: 24787
On 7/23/2012 17:52, Nick Laflamme wrote:
Were you hoping for change in 6.3 because you've submitted an enhancement request and were led to
believe it would happen "soon"? Or were you just figuring that "someone else"
has probably requested this enhancement already?
Nick
On Jul 23, 2012, at 5:03 PM, Kevin Kettner wrote:
Does anyone know if IBM is ever going to expand the character set
accepted for TSM passwords? I was hoping that would happen in TSM 6.3,
but apparently it still has the same password rules as it has for as
long as I can remember:
http://pic.dhe.ibm.com/infocenter/tsminfo/v6r3/topic/com.ibm.itsm.client.doc/r_opt_password.html
A--Z
Any letter, A through Z, uppercase or lowercase
0--9
Any number, 0 through 9
+
Plus
.
Period
_
Underscore
-
Hyphen
&
Ampersand
The password policy at our university is this:
* Are at least eight alphanumeric characters long
* Contain at least three of the following four categories:
o upper case characters (e.g., A-Z)
o lower case characters (e.g., a-z)
o Digits (e.g., 0-9)
o Special characters ( e.g., !@#$%^&*()_+|~-=\`{}[]:";'<>?,./)
TSM doesn't meet that standard and it seems a little silly as that seems
to be the industry standard for secure passwords.
And yes, I am aware that special characters do not actually improve
password security that much, but...
http://xkcd.com/936/
|
|
|