[prev in list] [next in list] [prev in thread] [next in thread] 

List:       racf-l
Subject:    Re: Protected user
From:       Radoslaw Skorupka <R.Skorupka () HOTMAIL ! COM>
Date:       2021-08-31 17:29:01
Message-ID: DB9PR02MB677849685CE42112FEC6628F99CC9 () DB9PR02MB6778 ! eurprd02 ! prod ! outlook ! com
[Download RAW message or body]

I guess this is started task user and the password is simply not used.
In that case PROTECTED is good choice.
How to make sure?
Well, by browsing SMF records.
You should find user logons if any.
Regarding back to old password - the password is already expired. In 
that case there are three ways:
a) nobody/no process use password for logon => nothing will change
b) password is being used by someone, but you changed user to PROTECTED 
=> you will met this guy very soon :-)
c) password is being used by someone, but you just wait => the guy will 
change it or you'll met him soon.


-- 
Radoslaw Skorupka
Lodz, Poland



W dniu 31.08.2021 o  14:28, Carsten Johansen pisze:
> Hi,
> 
> Appreciate if anyone will be able to help with below issue? :
> 
> we have a started task user-id (OPC) defined many years ago.
> 
> We don't know if the user-id has a password, if it has a password I guess no one \
> would knew it. 
> z/Secure show this regarding password:
> 
> Password
> 
> Has a password                Yes
> Expired password              Yes
> Password chg date in effect
> Password expiration date      31Aug21
> 
> and this regarding statistics
> 
> Creation date                 15Mar92
> Last RACINIT current connects 31Aug21
> User's last use date          31Aug21
> User's last use time          08:00
> 
> Wonder why the password expiration date is the same as user's last use date?
> 
> If we want to make this user-id PROTECTED (alu 'userid' nopassword nophrase),
> 
> would we be able get back to the previous (unknown) password in case we need to do \
> a fallback? 
> using the recreate user-id function in z/Secure seems to give a possibility of \
> 'recreating' the encrypted password - would that work, 
> and is it possible - at all - to do a password recreation?
> 
> we are on z/OS 2.4
> 
> Thanks in advance
> 
> Regards
> 
> Carsten Johansen
> 
> We protect your privacy - read more in our privacy \
> notice<https://www.nets.eu/gdpr/pages/privacy-notice-for-nets.aspx>. If you are not \
> the intended recipient, please contact the sender immediately and delete the email \
> and any attachments.


[prev in list] [next in list] [prev in thread] [next in thread]