• Subject: Re: Fw: Rewarding challenge AS/400...
  • From: Chuck Lewis <clewis@xxxxxxxxxx>
  • Date: Thu, 16 Sep 1999 13:17:30 +0100

I did something similar, RESETUP. Again only certain people (help desk, etc.) 
could use it and it could not reset Q* profiles OR mine and several other high 
level folks. We required that any new user provide us with Mother's Maiden Name 
(or whatever they wanted to make up for it) and we had a file
that contained that info. The command retrieves that info and resets the 
profile to that. THAT no one knows the password. This came up when some users 
(union shop) were concerned with a supervisor knowing there password before 
they could change it. Also and added level of security since no one can
assume that password is signon name. AND the command logs who, where, what date 
and time for whom the reset is executed. AND it "narcs"/reports/notifys and 
"too many" reset attempts and also reset attempts on "sensitive" profiles...

Chuck

Rob Berendt wrote:

> Where we work we created a command called RESETU.  Changes a user password to 
>their profile.  We don't *DISABLED.  The command, and it's associated program, 
>adopt authority.  Only certain people can run it, (help desk).  Code restricts 
>certain users from being changed, like Q* and other *secofr's.
>
> DKahn1@JNJFR.JNJ.com on 09/16/99 04:05:41 AM
> Please respond to MIDRANGE-L@midrange.com@Internet
> To:     MIDRANGE-L@midrange.com@Internet
> cc:
> Fax to:
> Subject:        RE: Fw: Rewarding challenge AS/400...
>
> But don't you also have a procedure that sets the status to *ENABLED and the
> password = user ID? Who do you ensure that a departed user can't simply get
> himself back on line with a phone call to the help desk?
>
> Dave Kahn
> Johnson & Johnson International (Ethicon) France
> Phone : +33 1 55 00 3180
> Email :  dkahn1@jnjfr.jnj.com (work)
>            dkahn@cix.co.uk      (home)
>
> -----Message d'origine-----
> De: PaulMmn [mailto:PaulMmn@ix.netcom.com]
> Date: 16 September 1999 04:40
> ?: MIDRANGE-L@midrange.com
> Objet: Re: Fw: Rewarding challenge AS/400...
>
> We have suffered from a lack of communication over the years; no one seems
> to include MIS...  IS... IT... as part of the exit procedure.
>
> We have a program that looks for unused profiles that changes their
> password to *NONE and status to *DISABLED.
>
> +---
> | This is the Midrange System Mailing List!
> | To submit a new message, send your mail to MIDRANGE-L@midrange.com.
> | To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com.
> | To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com.
> | Questions should be directed to the list owner/operator: david@midrange.com
> +---

+---
| This is the Midrange System Mailing List!
| To submit a new message, send your mail to MIDRANGE-L@midrange.com.
| To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com.
| To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com.
| Questions should be directed to the list owner/operator: david@midrange.com
+---

As an Amazon Associate we earn from qualifying purchases.

This thread ...

Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.