Due to the recent acquisition by IBM, the Adabas & Natural Ideas Portal does not contain ideas from products ApplinX and EntireX any longer. Please refer to the IBM Ideas Portal for these products from now on (IBMid required). Existing content will be migrated during the next few weeks.
Add a new idea Subscribe
Status Future consideration
Workspace Natural for Linux and Cloud
Categories Natural (NAT)
Created by Douglas Kelly
Created on Jul 27, 2021

RELATED IDEAS

Secure storage/retrieval of passwords such as EXX passwords

Currently, calling secured EntireX services requires calling RPC-CNTX or USR2071N/USR2702N/USR2074N/etc to pass in a user id and password. There's no provision for providing anything other than a clear text password, so it ends up in clear text in the calling program and/or invocation (e.g. USR2072P).

Please provide a means to store and retrieve passwords in a secure manner. Or, better yet, provide interface to allow secure tokens to be used.

Use Case Improved security of credentials.
Created on Brainstorm 07/26/2021 03:04 PM
Brainstorm ID 9308
  • Douglas Kelly
    Reply
    |     Jul 28, 2023

    Could an etbnattr encrypted password be passed to RPC-CNTX/USR2072/etc?

1 MERGED

provide API for EntireX passwords that accepts encrypted value

Merged
Currently USR2072N is called to send in an EntireX Security password, but USR2072N only accepts a clear text password, which makes it difficult to hide. If there was an API that could send in the encrypted form (e.g. as encrypted by etbnattr) it w...
Douglas Kelly over 1 year ago in Natural for Linux and Cloud / Security 1 Future consideration
The Adabas & Natural by Software AG Ideas Portal is hosted by Aha! Labs Inc.. Therefore, personally identifiable information are processed by Aha! Labs Inc., a company based in the United States of America. By using this Ideas Portal you agree to the Terms of Service of Aha! Labs Inc.. For further information about Aha’s handling of your personally identifiable information, please go to: https://www.aha.io/legal/security/gdpr.