I was thinking that Windows itself may have tried the password at
least once, automatically, without user intervention, depending on how
the user defined the "mapped drive" -- you can tell Windows to remember
the password and attempt to reconnect automatically whenever Windows is
re-started (boots up). So, that may have "used up" at least one
attempt, before prompting the user. Then, if the user "got it wrong"
whenever Windows subseuqently prompted the user for that password, they
may have "used up" the remaining tries.
In any case, I think that article points the way to a "solution" -- if
you can set up that program to run periodically, e.g. as a scheduled
job, at least once a day, perhaps more frequently, it seems tome that
you should be able to prevent this sort of thing.
> On 7/11/2014 2:53 PM, Steinmetz, Paul wrote:
1) For second level text, do you mean this?
Cause . . . . . : User profile TPASKEIP exceeded the maximum number of
incorrect sign-on attempts when connecting to IBM i Support for Windows
Network Neighborhood (IBM i NetServer). This user profile has been disabled
for IBM i NetServer access. The latest failure was received from
workstation ::ffff:10.5.47.54 at IP address ::ffff:10.5.47.54.
2) Also, based on the message, the user exceeded the maximum number of attempts.
However, they only keyed their password once.
Does Netserver use sysval QMAXSIGN *SEC Maximum sign-on attempts allowed?
We are set to 3.
From: MIDRANGE-L [mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of Mark S Waterbury
Sent: Friday, July 11, 2014 11:37 AM
To: Midrange Systems Technical Discussion
Subject: Re: [Bulk] Netserver profile being disable after IPL and/or password change - CPIB682
Look at the second-level text for that message CPIB682 for an explanation as to how or why those NetServer user IDs are getting disabled.
for a nice article and tool by Carsten Flensburg that addresses this issue.
Mark S. Waterbury
> On 7/11/2014 10:18 AM, Steinmetz, Paul wrote:
I have a group of users that use mapped drives to the IFS.
Following an IPL, System save, restricted state and/or if user changes their password, their Netserver profile becomes disabled with a CPI8682.
Once the profile is re-enabled, every is fine, until next maint and/or password change.
Is this normal behavior, or can anything be done to avoid these nuisances?
Message ID . . . . . . : CPIB682
Date sent . . . . . . : 07/11/14 Time sent . . . . . . : 08:13:54
Message . . . . : User profile TPASKEIP disabled for IBM i Support for
Windows Network Neighborhood access.
IBM i Systems Administrator
Pencor Services, Inc.
462 Delaware Ave
Palmerton Pa 18071
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe, unsubscribe, or change list options,
or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take a moment to review the archives at http://archive.midrange.com/midrange-l.