We implemented EIM SSO earlier this year.
Overall working well.
Outstanding issues below.
1) Telnet connection configured as - Use Kerberos principal; no prompting.
Telnet working fine, no password needed.
iSeries password expires.
Telnet connections continue to work even though password expired.
Non-Telnet connections (mapped drives, ODBC for mail merges, etc,) fail due to expired password.
User is NOT given a prompt to change their password.
iSeries userprofile/password is different from Windows user/password.
2) New iSeries userprofile is created and configured for EIM SSO.
Previous to EIM SSO, we set the password to match the profile, PWDEXP set *YES.
User would get a prompt to change their password on first use.
With EIM SSO, the prompt no longer occurs.
For both issues,
Any thoughts from the group for managing iSeries passwords when configured for EIM SSO.
Thank You
_____
Paul Steinmetz
IBM i Systems Administrator
Pencor Services, Inc.
462 Delaware Ave
Palmerton Pa 18071
610-826-9117 work
610-826-9188 fax
610-349-0913 cell
610-377-6012 home
psteinmetz@xxxxxxxxxx
http://www.pencor.com/
As an Amazon Associate we earn from qualifying purchases.