Valid on z/OS.
Use the PTKRESCK control option to indicate whether or not a FASTAUTH resource validation check is performed to verify that a user has the appropriate authority to generate a Pass Ticket for a specific user and application. This FASTAUTH call is made with the CLASS=PTKTDATA, ATTR=UPDATE, and ENTITYX='PTKTGEN.applid.userid' parameters, where:
The application ID associated with the PassTicket.
The ID of the user for which the PassTicket is being generated.
This security call is issued regardless of any other PassTicket security calls.
This control option has the following format:
PTKRESCK(YES|NO)
Activates the PTKRESCK feature.
(Default) Deactivates the PTKRESCK feature.
This example activates PTKRESCK:
F TSS,PTKRESCK(YES)
Valid on z/OS.
Use the PWADMIN control option to enforce NEWPW control option rules and the password interval specification when an administrator or user with MISC8(PWMAINT) or ACID(MAINTAIN) authority performs a password change through a TSS command.
Note: When PWADMIN(YES) is active, the NEWPW MINDAYS option is not enforced.
This control option may be entered as a MODIFY command or through the parameter file.
This control option has the following format:
PWADMIN(YES|NO)
Enforces NEWPW controls during TSS command administrative password changes (also checks password history for identical passwords), and does not allow expiration interval changes.
(Default) Does not enforce NEWPW rules (or check password history) during TSS command administrative password changes and allows expiration interval changes.
Note: The CASECAUT resource class allows an override of NEWPW restrictions through CASECAUT resource permissions with UPDATE access. For details about using CASECAUT to provide restricted administrative authorities, see the CA Top Secret User Guide.
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|