Thanks
-Original Message-
From: IBM Mainframe Discussion List On Behalf Of
Robert S. Hansel (RSH)
Sent: Thursday, January 13, 2022 3:29 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: Change password
Gadi,
Use of the operand REVOKE(date) requires SPECIAL. It might work if the user
ject: Change password
Hi,
I would like to allow a user that does not have the special or group special
attribute to issue the following command succefully:
alu password() resume noexpire revoke ( 01/13/22 )
Is this possible?
Right now the command fails with
ICH408I USER(OP01) GROUP(
I may have mentioned it before, but Volva Data (the organization that handles
data operations for the various Volvo companies worldwide) has, or used to have
when I worked there, a requirement that any department with more than
employees have someone within the area authorized to reset password
EE
> >>
> >> It seems like it won't work, and I'll have to find a workaround.
> >>
> >> Gadi
> >>
> >> -Original Message-
> >> From: IBM Mainframe Discussion List On
> Behalf
> >> Of Attila Fogarasi
>
PM
To:IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: Change password
For completeness, also through Facility IRR.PWRESET.OWNER or
IRR.PWRESET.TREE or by being owner of the user profile, for ordinary
userids.
However userids with some powerful attributes, such as SPECIAL,
OPERATIONS, AUDITOR and PROTECTED cannot
rom: IBM Mainframe Discussion List On Behalf
> Of Attila Fogarasi
> Sent: Wednesday, January 12, 2022 12:48 PM
> To: IBM-MAIN@LISTSERV.UA.EDU
> Subject: Re: Change password
>
> For completeness, also through Facility IRR.PWRESET.OWNER or
> IRR.PWRESET.TREE or by being owner
: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: Change password
For completeness, also through Facility IRR.PWRESET.OWNER or IRR.PWRESET.TREE
or by being owner of the user profile, for ordinary userids.
However userids with some powerful attributes, such as SPECIAL, OPERATIONS,
AUDITOR and PROTECTED
ame Discussion List On Behalf
> Of Itschak Mugzach
> Sent: Wednesday, January 12, 2022 12:41 PM
> To: IBM-MAIN@LISTSERV.UA.EDU
> Subject: Re: Change password
>
> Gadi,
>
> allow the user (that enter the command) to facility irr.password.reset
>
> *| **Itschak Mug
For completeness, also through Facility IRR.PWRESET.OWNER or
IRR.PWRESET.TREE or by being owner of the user profile, for ordinary
userids.
However userids with some powerful attributes, such as SPECIAL, OPERATIONS,
AUDITOR and PROTECTED cannot be manipulated without having SPECIAL
authority.
On W
x27;t help.
>
> Gadi
>
> -Original Message-
>
> From: IBM Mainframe Discussion List IBM-MAIN@LISTSERV.UA.EDU On Behalf Of
> Itschak Mugzach
>
> Sent: Wednesday, January 12, 2022 12:41 PM
>
> To: IBM-MAIN@LISTSERV.UA.EDU
>
> Subject: Re: Change password
>
&
Itschak,
The user has CONTROL access to IRR.PASSWORD.RESET
That doesn't help.
Gadi
-Original Message-
From: IBM Mainframe Discussion List On Behalf Of
Itschak Mugzach
Sent: Wednesday, January 12, 2022 12:41 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: Change password
Gadi,
Gadi,
allow the user (that enter the command) to facility irr.password.reset
*| **Itschak Mugzach | Director | SecuriTeam Software **|** IronSphere
Platform* *|* *Information Security Continuous Monitoring for Z/OS, zLinux
and IBM I **| *
*|* *Email**: i_mugz...@securiteam.co.il **|* *Mob**: +9
Hi,
I would like to allow a user that does not have the special or group special
attribute to issue the following command succefully:
alu password() resume noexpire revoke ( 01/13/22 )
Is this possible?
Right now the command fails with
ICH408I USER(OP01) GROUP(OPER) NAME(OPER-0
One must have UPDATE access to use the NOEXPIRE operand.
Regards,
Jim
On Wed, Feb 17, 2021 at 8:30 AM Gadi Ben-Avi wrote:
> Hi,
> I would like users in a group (OPER) to be able to change the password of
> users is a specific group (K002).
> The ALTUSER command is generated by a REXX program
Hi,
I would like users in a group (OPER) to be able to change the password of
users is a specific group (K002).
The ALTUSER command is generated by a REXX program and issued under TSO.
I started off with giving the OPER group READ access to IRR.PWRESET.TREE.K002.
The command ended with RC=4
I th
15 matches
Mail list logo