Conceptually, the user with *SECADM would have been the one to setup the profile for the other user.
Thus, the user's profile would have been owned by the *SECADM profile (or its group) given the *SECADM
profile *ALL authority to the user's profile.

On the other hand, if all you want is to get a user authority to reset other's passwords, then as
suggested by others, you just need a program that adopts the authority required to do the reset.


Charles Wilt
Software Engineer
CINTAS Corporation - IT 92B
513.701.1307

wiltc@xxxxxxxxxx


-----Original Message-----
From: midrange-l-bounces@xxxxxxxxxxxx [mailto:midrange-l-
bounces@xxxxxxxxxxxx] On Behalf Of Jerry Adams
Sent: Friday, March 14, 2008 10:58 AM
To: Midrange Systems Technical Discussion
Subject: Re: CPF2228

The help text with the message says that the person making the change
needs Object management (*OBJMGT) and use (*USE) authority to the
profile. Belonging to the *SecAdm class does not have anything to do
with this.

If you do a DSPOBJAUT on the profile, it will tell you who has authority
in each category. In my case, only the user and QSECOFR have such
authority. (I'm pretty sure that *ALLOBJ authority would allow him/her
to make the change - but not something I would recommend.)

You might check the archives for work arounds or ways to set this up. I
know the question has come up here more than once.

* Jerry C. Adams
*IBM System i Programmer/Analyst
B&W Wholesale Distributors, Inc.* *
voice
615.995.7024
fax
615.995.1201
email
jerry@xxxxxxxxxxxxxxx <mailto:jerry@xxxxxxxxxxxxxxx>



Barry Kwong wrote:
One of my user need to reset other user's password. His user class is
set at *secadm. He is part of a group and the Limit Capabilities is set
to no. When he tries to reset other user profile, he recieves the message
'Not authorized to change user profile.'. Any help is appreciated.
_________________________________________________________________
At a loss for words? Find them by playing Seekadoo! Play now!
http://g.msn.ca/ca55/208


--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing
list
To post a message email: MIDRANGE-L@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.




This e-mail transmission contains information that is intended to be confidential and privileged. If you receive this e-mail and you are not a named addressee you are hereby notified that you are not authorized to read, print, retain, copy or disseminate this communication without the consent of the sender and that doing so is prohibited and may be unlawful. Please reply to the message immediately by informing the sender that the message was misdirected. After replying, please delete and otherwise erase it and any attachments from your computer system. Your assistance in correcting this error is appreciated.

This thread ...

Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2019 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].