No more typing reviews! Try our Samantha, our new voice AI agent.
ACF2 Logo

ACF2 Reviews

Vendor: Broadcom
4.5 out of 5
Leave a review

What is ACF2?

ACF2 offers robust access control and security management for mainframe environments, supporting quick rule adjustments and effective monitoring, aiding in resource allocation and system resilience.

Get the Mainframe Security Buyer's Guide and find out what your peers are saying about ACF2, CyberArk Privileged Access Manager, Imperva Data Security Fabric and more!
ACF2 is the #4 ranked solution in top Mainframe Security solutions and #13 ranked solution in top Database Security solutions. PeerSpot users give ACF2 an average rating of 9.0 out of 10. ACF2 is most commonly compared to CyberArk Privileged Access Manager: ACF2 vs CyberArk Privileged Access Manager. ACF2 is popular among the large enterprise segment, accounting for 63% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 18% of all views.
Buyer's Guide
Mainframe Security
April 2026
Get the category report
Helped 893,221 peers since 2012

Featured ACF2 reviews

Read more reviews

ACF2 mindshare

Product category:
Mainframe Security
As of May 2026, the mindshare of ACF2 in the Mainframe Security category stands at 12.1%, up from 10.3% compared to the previous year, according to calculations based on PeerSpot user engagement data.
Mainframe Security Mindshare Distribution
ProductMindshare (%)
ACF212.1%
IBM Security zSecure15.7%
Top Secret12.0%
Other60.2%
Mainframe Security
 
 
Key learnings from peers

Valuable Features

ACF2 excels in mainframe security by offering strict, reliable access control and user security management. Organizations value its automatic privilege assignments and rule management. NOACCESS by default and straightforward access rules enhance protection. Logging and monitoring are crucial, with real-time reporting on event logs saving time and optimizing resource allocation. Its security and resilience features make it essential in mainframe environments.
  • "It is a good product."
  • "Without the product, extracting this information may take us as much as several days; instead, we can get it in real time."
  • "By providing a high level of access control to the z/OS systems, ACF2 allows us to maintain tight controls on dataset and system access and helps us keep unauthorized users from accessing PHI or PII data."

Room for Improvement

ACF2 requires improvements such as an Eclipse interface for simpler programmable access, longer rules exceeding 32K, and browser support for tasks instead of 3270. It should reduce manual intervention and false positives in user access checks. Organizations suggest focusing on integration with distributed applications and adaptability to cloud environments. There's a call for unique, secure naming conventions for accounts and user IDs.
  • "They can work on its ability to work in a distributed environment."
  • "The user access review could also be improved. It produces a lot of false positives."
  • "It needs longer rules. The max rule is 32K."

Popular Use Cases

Organizations primarily utilize ACF2 to manage security and user access on mainframe systems. They handle user authentication, profile access, and deprovisioning from applications. ACF2 is also used for monitoring log events through reporting. Additionally, it encompasses access management for z/OS operating systems, supporting authentication and access to various resources. Companies use the latest version of ACF2, which they host in-house.

Service and Support

ACF2 technical support is praised for its exceptional responsiveness and expertise, often prioritizing solving issues efficiently. Users appreciate the team's knowledge and ownership of problems. While current support staff are seen as helpful, there may be challenges related to outdated UID information and the need to rely on external resources. ACF2 customers generally express high satisfaction with technical support quality and reliability.

Deployment

Some users found ACF2's initial setup complex, especially if relying on contractors, as errors require a deep understanding of ACF2. Others weren't involved but heard it performed reliably. For some, achieving goals took time but was completed within six months, suggesting it's widely adopted by the IT group. Another described the setup as straightforward, while one reviewed ACF2's security assessment without handling deployment. ACF2 has unexplored capabilities still being considered.

Scalability

ACF2 exhibits robust scalability, seamlessly accommodating large organizations. It efficiently handles user authentication and role changes across thousands of employees. Users reported no issues even when integrating with LDAP or AD groups, ensuring secure extensions. With its ability to support numerous deployments, ACF2 remains an integral security manager for mainframe environments despite its legacy status. Users trust it to manage corporate access while efficiently adapting to staff changes.

Stability

ACF2 is 100% stable and exhibits many years of reliable use. Users experience no issues, emphasizing its robust nature. Stability depends on system administrators' configurations. When configured with security in mind, ACF2 maintains its stability.
These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our Mainframe Security Buyer's Guide for additional reliable information.

Top industries

By visitors reading reviews
Financial Services Firm
18%
Manufacturing Company
13%
Comms Service Provider
8%
Retailer
7%
Insurance Company
7%
Real Estate/Law Firm
6%
Educational Organization
6%
Wholesaler/Distributor
4%
Government
4%
Computer Software Company
4%
Religious Institution
3%
Marketing Services Firm
3%
Media Company
3%
Outsourcing Company
3%
Healthcare Company
3%
University
1%
Legal Firm
1%
Hospitality Company
1%
Logistics Company
1%
Energy/Utilities Company
1%
Consumer Goods Company
1%
Construction Company
1%

Compare ACF2 with alternative products

Go!

Learn more about ACF2

ACF2 is designed for the mainframe, providing stringent access control for CICS resources and effective user security management. Known for its default NOACCESS setup and straightforward access rules, it enables real-time log reporting and efficient monitoring. The platform supports quick rule changes, minimizing resource allocation time, which enhances security and resilience. Despite its strengths, ACF2 can improve by enhancing its Eclipse and browser interfaces and reducing manual processes. Desired improvements include flexible rules, better support for distributed environments, longer rule capabilities, and enhanced cloud deployment options. Organizations primarily use ACF2 to secure z/OS operating systems, manage user authentication, and access profiles and resources, maintaining updated versions for optimal security and efficiency.

What are the key features of ACF2?
  • Strict Access Control: Securely manages access to CICS resources with default NOACCESS.
  • User Security Management: Provides robust control over user privileges and security.
  • Swift Privilege Assignment: Enables quick assignment of user privileges for efficiency.
  • Real-Time Event Logging: Facilitates comprehensive log reporting and monitoring.
  • Rule Modification: Quickly adjusts rules to meet evolving security needs.
What benefits should users expect from ACF2?
  • Enhanced Security: Strengthens mainframe application security through strict access management.
  • Operational Efficiency: Reduces resource allocation time with swift rule changes.
  • Comprehensive Monitoring: Supports efficient logging and event reporting for security oversight.
  • Resource Resilience: Contributes to system resilience by optimizing resource allocation and control.

In industries relying on mainframes, such as finance and telecommunications, ACF2 is implemented for safeguarding z/OS environments by managing access and authentication processes securely. Companies maintain the latest version to ensure stringent protocol adherence, maximizing operational efficiency.

ACF2 was previously known as CA ACF2.

ACF2 customers

Sky, Rogers Communications

Related questions

  • 10
What is a good length for a password in ACF2 so it's safe?
  • 16
Is ACF2 suitable for beginners?
  • 10
What types of auditing and reporting capabilities does ACF2 offer?
  • 40
What is the difference between mainframe security assessment and a mainframe pentest?
  • 38
What are some common misconceptions that people often have about mainframe security?
  • 52
What are External Security Managers?
  • 26
When evaluating Mainframe Security, what aspect do you think is the most important to look for?
  • 24
Why is Mainframe Security important for companies?

Product Categories

Product Categories
Mainframe Security
Database Security

Popular Comparisons

Popular Comparisons
CyberArk Privileged Access Manager vs ACF2 Logo
CyberArk Privileged Access Manager vs ACF2
Imperva Data Security Fabric vs ACF2 Logo
Imperva Data Security Fabric vs ACF2
IBM Security Guardium Data Protection vs ACF2 Logo
IBM Security Guardium Data Protection vs ACF2
IBM Security zSecure vs ACF2 Logo
IBM Security zSecure vs ACF2
Top Secret vs ACF2 Logo
Top Secret vs ACF2
IBM Resource Access Control Facility vs ACF2 Logo
IBM Resource Access Control Facility vs ACF2
Cleanup vs ACF2 Logo
Cleanup vs ACF2
Precisely Ironstream vs ACF2 Logo
Precisely Ironstream vs ACF2
See all alternatives
 
ACF2 Reviews Summary
Author infoRatingReview Summary
IT Examiner at a financial services firm with 10,001+ employees4.5I use this very stable and scalable mainframe security product, valuing its logging and monitoring. While great for authentication and audit trails, I wish it could adapt better to distributed and cloud environments. I'd rate it 9/10.
IT Examiner at a financial services firm with 10,001+ employees4.0I rate this product an 8/10 for its excellent real-time log reporting, which saves significant time and resources. However, I desire less manual intervention and improved user access reviews to minimize false positives.
Technical Architect at a healthcare company with 10,001+ employees4.5I find ACF2 a highly stable and scalable z/OS security solution, valuing its robust protection, NOACCESS by default, and excellent support. My only improvement would be longer rule capabilities beyond 32K.
Security Analyst4.5I find CA ACF great for quickly managing mainframe user security and provisioning, and its support is excellent. My main wish is for browser-based access instead of the 3270 tool.
Project Manager at a tech services company with 10,001+ employees5.0I find ACF2 offers strict access control and compliance, but as a legacy product, support is poor, setup is complex, and managing UIDs is challenging due to lost knowledge.
Chief Strategist at Mainframe analytics4.5I find this product offers excellent, stable, and scalable mainframe security with outstanding support. My key suggestion is an Eclipse interface for programmable access, which would greatly enhance development integration for more flexible solutions.