Re: Kerberos vs id/password

Not sure if the T-X0 or T-X1 entries would help
All journal entries by code and type - IBM Documentation
<https://www.ibm.com/docs/en/i/7.5?topic=information-all-journal-entries-by-code-type>

On Fri, Jan 10, 2025 at 1:35 PM Justin Taylor <jtaylor.0ab@xxxxxxxxx> wrote:

I've never tried to answer that question. I always changed user profiles
to Local Password Management *NO when they were converted, so it was
readily apparent who was doing Kerberos.

My first thought would be to look at the different values for QAUDCTL. I
would expect one of them to enable logging that would write that to
QAUDJRN.

HTH

date: Fri, 10 Jan 2025 11:29:24 -0500
from: smith5646midrange@xxxxxxxxx
subject: Kerberos vs id/password

My client is mostly using Kerberos but we don't know if everyone has been
converted over. Is there anything that would tell us if a user logged in
via Kerberos vs an ID/password? We also don't know who initially signs

on

with Kerberos but them logs out and uses and ID/password to log back in
rather than disconnect / reconnect for Kerberos to take over the login.



We also know there is some manual FTP, ODBC, etc. connections being done
which Kerberos does not control.



My question is (trying to identify the first group) is there anything in
the
system that shows if a login (green screen) was via Kerberos or
ID/password?

--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: https://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxxxxxxxx
Before posting, please take a moment to review the archives
at https://archive.midrange.com/midrange-l.

Please contact support@xxxxxxxxxxxxxxxxxxxx for any subscription related
questions.