Skip to Main Content
IBM Power Ideas Portal


This portal is to open public enhancement requests against IBM Power Systems products, including IBM i. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

Status Delivered
Workspace IBM i
Categories Security
Created by Guest
Created on Jan 3, 2019

API to check password

can you create an API to verify a generated password against
- all the SYSVAL that applies
- the exit program for verification of password

peculiarly usefull in case of use of QPWDRULES(*ALLCRTCHG)

or, better, an API able to create a password that respect all the security rules.


Use Case:

I have a feature in an application to help users to create complex password, and I would like to be able to generate password not rejected when I will run CHGUSRPRF command


Idea priority Medium
  • Guest
    Reply
    |
    May 3, 2022
    The new API, Check Password Meets Password Rules (QSYCHKPR), checks if the password specified in the password information meets the password rules for the system on which this API is run. The password rules are composed of system values QPWDRQDDIF and either QPWDRULES or all of the following: QPWDMINLEN, QPWDMAXLEN, QPWDLMTAJC, QPWDLMTCHR, QPWDLMTREP, and QPWDRQDDGT.
    The API can be used by users or password management tools to predetermine if a value would meet the configured password rules set by the company.
    See the API documentation for further details -- https://www.ibm.com/docs/api/v1/content/ssw_ibm_i_75/apis/qsychkpr.htm.

    IBM Power Systems Development
  • Guest
    Reply
    |
    May 8, 2020

    IBM will use this request as input to planning but no commitment is made or implied. This request will be updated in the future if IBM implements it. IBM will use votes and comments from others in the community to help prioritize this request.

  • Guest
    Reply
    |
    May 16, 2019

    IBM has received the requirement and is evaluating providing a check/verify interface. IBM will provide a response after evaluation is complete. IBM will not provide a generate password interface.

  • Guest
    Reply
    |
    Jan 6, 2019

    Just change the profile... if the password is rejected it won't be changed (you would get the same behavior with an API to validate the password first).

    But I suggest to consider SSO... and get rid of passwords all the way.