We never had MAINT being revoked due too invalid logon attempts, maybe the nightly XAUTOLOG resets the invalid pswd count too.
2008/7/1 Alan Altmark <[EMAIL PROTECTED]>: > > On Tuesday, 07/01/2008 at 12:29 EDT, Kris Buelens <[EMAIL PROTECTED]> > wrote: > > Use'd define MAINT as a logonby user > > RAC RDEFINE SURROGAT LOGONBY.MAINT > > RAC PERMIT MAINT.LOGONBY CLASS(SURROGAT) ID(xxxx > > to define which users/groups can issue > > LOGON MAINT BY xxx and give the pwsd of xxx > > > > As to avoid RACF revoking users due to inactivity: XAUTOLOG them every > now and > > then. > > As of z/VM 5.3, you can now remove a user's password entirely (ALTUSER > NOPASSWORD). This prevents revocation due to invalid password attempts. > Preventing revocation due to inactivity is known in RACF terms as a > "protected" user, support that is in z/OS, but not yet in z/VM. > > Alan Altmark > z/VM Development > IBM Endicott -- Kris Buelens, IBM Belgium, VM customer support
