× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. October 2006

Re: Managing Password expiration

Security Officer access can be used to identify what passwords have expired, but you need to go one step further. From WRKSYSVAL rules on passwords (how many days until expire under what conditions) and info security officer data on the basis of that calculation (date of LAST password change by user), compute those user-ids that have only a few days until they expire, and send them a communication reminding them of 
* relevant rules about changing passwords
* the fact that theirs expires how soon
* process(es) they may follow to get their password changed before it is too late 

Follow this up with message to you, who all is in harms way & has not acted.


Al, Rob,

Thanks for the info.

It is sort of a Catch-22 situation. When a user calls the
PC program (made with ASNA's VRPG), it requests USER and
PWD and logs to the iSeries with that User ID. BUT, if the
User ID has expired, the iSeries rejects the logging
attempt, until the user changes his/her password. It would
be nice to have a "pre-log" who could allow the program to
identify the situation and update the password beforehand.

We already use the QSYCHGPW API so the user can change the
password by himself (or herself... Not being a native
English speaker all this PC way of writing sometimes drive
me nuts. Maybe I'll just use "it" when talking about a user
:-) )

Sigh?I think that *maybe* I'll manage the password
expiration process myself?


Thanks again for your help,

Luis Rodriguez

----------------------------------------------------------------------
>
> message: 1
> date: Mon, 23 Oct 2006 12:02:52 -0500
> from: Al Mac <macwheel99@xxxxxxxxxxx>
> subject: Re: Managing Password expiration
>
> Suppose I am in a dumb terminal environment and my
> password has expired.  I
> go through the process associated with sign on, using my
> old password.  A
> screen or message pops up informing me that my password
> has expired, and
> offering me the opportunity to change it.  The system
> recognizes me at the
> old password, but also recognizes that my password has
> expired, and will
> not let the full sign on process complete until I have
> changed it.  This is
> not being done at the level of software controlled by
> employees of the
> customers of IBM.

<---->
> ------------------------------
>
> message: 2
> date: Mon, 23 Oct 2006 13:30:00 -0400
> from: rob@xxxxxxxxx
> subject: Re: Managing Password expiration
>
> iNav has a feature that you can right click on a
> connection, Connection to
> Server, Change Password.
> Would be nice to know the exact program they call to give
> you this nice
> prompt.  Try asking IBM?
>
> If you want to roll your own, here's a place to start:
>
http://publib.boulder.ibm.com/infocenter/iseries/v5r4/topic/apis/QSYCHGPW.htm
>
> Rob Berendt
> --
> Group Dekko Services, LLC
> Dept 01.073
> PO Box 2000
> Dock 108
> 6928N 400E
> Kendallville, IN 46755
> http://www.dekko.com
>
>
>
> Luis Rodriguez <luis.rodriguez2@xxxxxxxxx>
> Sent by: midrange-l-bounces@xxxxxxxxxxxx
> 10/22/2006 11:49 PM
> Please respond to
> Midrange Systems Technical Discussion
> <midrange-l@xxxxxxxxxxxx>
>
>
> To
> Midrange-L <midrange-l@xxxxxxxxxxxx>
> cc
>
> Subject
> Managing Password expiration
>
>
>
>
>
>
> Hi list,
>
> Suppose I am in a Client/Server environment AND my
> password
> expires, how can a (PC) program ask OS/400 to change the
> password without signing on first? Somehow, Client Access
> is able to do this.
>
> The company I am currently working for uses VARPG for
> their
> C/S apps, and would like to be able to use OS/400's
> password expiration features (opposed to programming
> their
> own?).
>
> Thanks for your help,
>
> Luis Rodriguez
>
>
> IBM Certified Systems Expert
> eServer i5 iSeries Technical Solutions
>

Luis Rodriguez

IBM Certified Systems Expert
eServer i5 iSeries Technical Solutions

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.