Thanks for the replies. At this stage we are not looking into using LDAP. As far as RACF not providing an exit for this - there may not be an exit specifically for this but we did have a product (a couple of years ago) called SYNCOM that did this. If I recall correctly they used a combination of ICHPWX01 and ICHRIX02.
Any idea if ICHRIX02 can be used? If you are not the intended recipient of this e-mail message, please notify the sender and delete all copies immediately. The sender believes this message and any attachments were sent free of any virus, worm, Trojan horse, and other forms of malicious code. This message and its attachments could have been infected during transmission. The recipient opens any attachments at the recipient's own risk, and in so doing, the recipient accepts full responsibility for such actions and agrees to take protective and remedial action relating to any malicious code. Travelport is not liable for any loss or damage arising from this message or its attachments.
