Skip to Main Content
Integration


This is an IBM Automation portal for Integration products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.


Status Not under consideration
Workspace App Connect
Created by Guest
Created on Aug 16, 2023

SID & password management/rotation with ACE

All the ACE(App Connect Enterprise) applications use Service ID's (Non-person accounts) and their passwords in securityIdentities to integrate with multiple backends like Databases, back-end systems, security profiles etc to support their business requirement. But as per Enterprise wide standards its mandatory to change passwords every 60 days or 90 days to prevent unauthorized access to systems.

But rotating these passwords on a periodic basis like every 60/90 days will require EG restart or broker restarts to reflect the change/support new password. This will cause outage to applications which are using the respective securityIdentities to interact with respective back-ends.

In ACE IBM introduced new feature called ace-vault to store these SID's and their passwords in secured encrypted way and can retrieve them using message flow at runtime to perform the integration with backend.


Ask here: To enhance acevault feature to manage and rotate the password on a periodic basis like 60/90 days as a configurable vaule and also update the respective security identities at same time without causing outage/EG restart to respective applications deployed on respective EGs.



We are looking for this new Feature which should be supported by ACE version 12.0.8 or higher

Idea priority High
  • Admin
    Ben Thompson
    Reply
    |
    Sep 8, 2023

    Idea review. Thank you for taking the time to raise this suggestion. Hi Deva, a duplicate suggestion was recently made by Pankaj under https://integration-development.ideas.ibm.com/ideas/APPC-I-816 which has already gathered 10 votes from Aetna, so we will use 816 to track this moving forward so to avoid the dilution of future voting, we are returning this idea as a duplicate and respectfully ask future readers to consider placing a comment and vote on to 816 (https://integration-development.ideas.ibm.com/ideas/APPC-I-816).