Have anyone of you done something to ensure that Luminis does not store actual user passwords in the Secret Store anymore? We always have to fight and justify with our Security folks as to why this is a requirement in Luminis. So far we have been using External Authentication with Kerberos.
We have recently tried to use Sungard's Identity Mgmt solution that allows use of an external CAS server (not Luminis's own CAS which I believe still stores passwords) but it has other issues like every single login to Luminis requires a call to Banner which may prove to be catastrophic on high-load days.
We have recently developed our own home-grown solution to use an external CAS to login to Luminis and that will address the password-storage issue and we are currently in the process of testing it extensively before putting it in production. Just wondering if anyone has done something with passwords.