Implementing Security for CA IDMS › Implementing Security › Signon Security

Signon Security

As a user-oriented security product, CA Top Secret requires that all users identify themselves to CA Top Secret to use CA IDMS. This can be done with a user-initiated signon or by using the Automatic Terminal Signon feature.

This release requires that all users must be permitted to the signon resources designated in the #SRTT.

• Comprehensive password controls are available, including:
• Password masking
• Minimum password length
• Suppression of vowels
• Random generation of passwords
• No password (NOPW option)
• Automatic password expiration on a pre-defined interval from 0 (no password changes required) to 255 days
• Minimum number of days between password change
• Password history comparison
• Restricted password prefixes (RPW option)
• Name and signon ID comparison
• Automatic ACID suspension on an installation defined threshold of number of failed attempts (default is three).

SIGNON Task

Most users will have to explicitly sign on to CA IDMS, using the SIGNON task. The format of the SIGNON task is:

SIGNON acidname password/new-pswd

acidname

The user's one-to-eight character ACID; required.

password

The user's password; always required unless the user has a password of NOPW.

new-pswd

Specifies a new password; optional. Specifying RANDOM causes CA Top Secret to automatically generate a new random password for the user.