Valid on z/OS, z/VSE, and z/VM.
Non-administrative ACIDs can use the PASSWORD keyword to change their own passwords (as long as the NOPWCHG attribute is not assigned and the new password conforms to the NEWPW control option restrictions).
If the ACID has multiple passwords assigned by facility, the MULTIPW and FACILITY options must be included to identify the specific facility password to change. If these options are not included on the password change request, the change applies to the default facility *ALL*.
Passwords entered through the Administrative Panels are "invisible." Passwords entered through TSS commands are entered as text.
Some teleprocessing monitors automatically convert mixed-case passwords to uppercase before processing by CA Top Secret. These monitors cannot match a mixed-case password.
When used by a non-administrative ACID, this keyword has the following format:
TSS REPLACE(acid) PASSWORD([old_password/]new_password)
[FACILITY(facility) MULTIPW]
(Optional) Specifies the existing password string that you want to change. If supplied, the old password must match the user’s password and must be separated from the new password by a slash (“/”).
Specifies the new password string for the ACID. The new password must meet NEWPW control option requirements.
(Optional) Supplies a facility with the MULTIPW keyword, which means that the password applies only to the specific facility. Specifying a MULTIPW facility password allows the administrator to account for variations in mixed-case and extended-length passwords.
Separate password history is provided for each MULTIPW facility password.
(Optional) Confirms that the password applies only to the specific facility. When a non-administrative ACID assigns a new password in a facility where an administrator assigned a MULTIPW facility password, the syntax must include the MULTIPW and FACILITY options to target the correct facility for the change.
Non-administrative ACID types can specify the PASSWORD keyword only on the ADD or REPLACE command. These ACID types can change the password for users within their scope if they have UPDATE access to entity TSSCMD.USER.cmd.PASSWORD in the CASECAUT resource class.
Note: For details about using CASECAUT to provide restricted administrative authorities, see the CA Top Secret User Guide.
Example: Replace the Password for the CICSPROD Facility
This example shows a non-administrator, multi-password ACID (USER56) replacing the password for the facility CICSPROD:
TSS REPLACE(USER56) PASSWORD(WORK)
MULTIPW
FACILITY(CICSPROD)
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|