John,
Point 5 - Set system value QPWDEXPITV to 90.
Point 4 - Wrap the query commands in your own program that tracks who is using the command at a given time. Your choice on how to do this.
Point 3 - Look at the QIBM_QSY_CHK_PASSWRD exit point. See the InfoCenter for an explanation of the exit point.
HTH,
Gary Monnier
-----Original Message-----
From: midrange-l-bounces@xxxxxxxxxxxx [mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of John Mathew
Sent: Tuesday, July 24, 2012 8:33 AM
To: Midrange Systems Technical Discussion
Subject: Password Security
Hi All,
Below things I can able to perform except the 3rd and 4th and 5th point.
1) Increase Minimum password lenght to 8 chars and introduce alphanumerical complexity.
QPWDMINLEN *SEC Minimum password length
QPWDRQDDGT *SEC Require digit in password
2) Increase password history to 12 previous passwords.
QPWDRQDDIF *SEC Duplicate password control
3) Prevent users setting password to username
4) Prevent system and user profiles from logging onto multiple workstations at the same time profiles with interactive QRY.
QLMTDEVSSN (regarding 4th point how many session we can limit with QLMTDEVSSN.)
5) Password must be reset with 3 months.
Please Can one help or guide me
Thanks in advance.
Regards,
John
________________________________
From: John Mathew <johnmathew400@xxxxxxxxx>
To: Midrange Systems Technical Discussion <midrange-l@xxxxxxxxxxxx>
Sent: Friday, 20 July 2012 10:52 PM
Subject: Re: Password Security
Thanks all for the valuable information.
Regarding point 4 let me check and if needed I need to understand what exactly a exit point program and how to write it.
Regards,
John
________________________________
From: Charles Wilt <charles.wilt@xxxxxxxxx>
To: Midrange Systems Technical Discussion <midrange-l@xxxxxxxxxxxx>
Sent: Friday, 20 July 2012 10:39 PM
Subject: Re: Password Security
WRKSYSVAL *SEC
or WRKSYSVAL QPWD*
QPWDLMTAJC *SEC Limit adjacent digits in password QPWDLMTCHR *SEC Limit characters in password QPWDLMTREP *SEC Limit repeating characters in password QPWDLVL *SEC Password level QPWDMAXLEN *SEC Maximum password length QPWDMINLEN *SEC Minimum password length QPWDPOSDIF *SEC Limit password character positions QPWDRQDDGT *SEC Require digit in password QPWDRQDDIF *SEC Duplicate password control
Will take care of 1-3...
QLMTDEVSSN *SEC Limit device sessions
Is kind of what you're asking about in 4, but it limits sessions completely...there's no built in way to limit just one app that I know of. Though you could probably do it by writing an exit point program.
HTH,
Charles
On Fri, Jul 20, 2012 at 1:00 PM, John Mathew <johnmathew400@xxxxxxxxx> wrote:
Hi All,
I need to implement below security in AS/400 system
1) Increase minium password length to 8 characters and introduce alphanumerical.
2) Prevent User Settings password to username.
3) Increase password history to 12 previous passwords.
4) Prevent system and user profiles from logging onto multiple workstations at the same time profiles with interactive QRY.
Please Can one help or guide me with screen shots or steps to implement.
Thanks in Advance
Regards,
John
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing
list To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe,
unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take
a moment to review the archives at
http://archive.midrange.com/midrange-l.
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe, unsubscribe, or change list options,
visit:
http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take a moment to review the archives at
http://archive.midrange.com/midrange-l.
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe, unsubscribe, or change list options,
visit:
http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take a moment to review the archives at
http://archive.midrange.com/midrange-l.
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe, unsubscribe, or change list options,
visit:
http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take a moment to review the archives at
http://archive.midrange.com/midrange-l.
As an Amazon Associate we earn from qualifying purchases.