So how does ILM handle password synchronization to a system that doesn't support password complexity policies available in Active Directory? For example, what if I need to synchronize a password to a RACF security subsystem on an IBM z/OS mainframe? Older versions of z/OS (those without passphrase support), only support passwords that are 8 characters in length, and that can only contain special characters of @, $, and # sign. RACF passwords are also converted to uppercase characters, so how should I handle case-sensitive passwords being fed into RACF? Do you have a test LPAR that customers or potential customers can use to test various password sync and identity management processes against? I know that's wishful thinking, but thought would ask anyway.