|
Mike Silvers wrote: >I do not believe that someone is attempting to sign in >using their user profiles. When the users try to sign on, >the first attempt shows that the signon information is >not correct. The second attempt will also state that the >signon information is not correct. The third attempt >will disable the profile. The profiles are not disabled >when we try to use them, we have to go through the process >of attempting to sign on three times (our system value for >number of password attempts is three). This is the reason >I believe that the password has been changed rather than >someone else attempting to sign in using their profile. Are you seeing any CP or PW audit records? Please change the password for a profile to be sure that auditing is set up correctly the CP audit record to be generated. It would also be a good idea to make sure that you can cause the PW audit record. Check the history log for evidence that someone is turning auditing off and then turning it back on. (You would see messages for the auditing system values changed.) Do a DSPUSRPRF for the user profiles in question and look at the "Date password last changed" field. This field would be set each time the password is changed for the user profile. Also use DSPOBJ for the user profiles and look at their "Change date/time". What is the QPWDLVL system value set to? Ed Fishel, edfishel@xxxxxxxxxx
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.