TPX v5.2 SP0 and RACF 1.9 Recenlty we experienced an issue with TPX when someone who is a "SPECIAL USER" whose ID got the following messages: ICH301I MAXIMUM PASSWORD ATTEMPTS BY SPECIAL USER XXXXXXXX AT TERMINAL XXXXXXXX. *140 ICH302D REPLY Y TO ALLOW ANOTHER ATTEMPT OR N TO REVOKE USER XXXXXXXX . ICH301I MAXIMUM PASSWORD ATTEMPTS BY SPECIAL USER XXXXXXXX AT TERMINAL XXXXXXXX. *142 ICH302D REPLY Y TO ALLOW ANOTHER ATTEMPT OR N TO REVOKE USER XXXXXXXX . A note for ICH302D says: Note: In multiple-user address spaces that have a single signon task (such as CICS or IMS(TM)), when the signon task issues the message, no other signons can occur until the operator has replied to the message. Our operators did not see the outstanding replay until about 25 mins later, at which time we took several S0C4 dumps, and several "ICH409I 282-020 ABEND DURING RACINIT PROCESSING" messages. Between the time of the RACF messages and the reply, it looks like all TPX logon's were held, as we saw many of these in the TPX log: TPXL0900 05/06/09.126 07:55:24.72 UNABLE TO CONTINUE DIALOGUE FOR USER: AAAAAAAA
Besides maybe having our message automation package reply automatically to the ICH302D message, are there any TPX changes we can make? In the TPX SMRT table, we have the security system listed as RACF. I came across a note in one of the TPX manuals about using SAF instead of RACF. I mention this because when I did a search on these RACF messages, one lead came back for IBM's CL/SUPERSESSION on this. One of the two things they mentioned was changing its setting from RACF to SAF. Thanks, Mark T. Regan, K8MTR CTO1 USNR-Retired (1969-1991) ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@bama.ua.edu with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
