Valid on z/OS, z/VSE and z/VM.
An administrative ACID can use the PASSWORD keyword to assign a password, along with values that control its use, to a previously defined ACID.
An administrative ACID can assign passwords which do not conform to NEWPW control option restrictions, however, passwords must not exceed the MAX length set for the system.
Passwords entered through the Administrative Panels are "invisible." Passwords entered through TSS commands are entered as text.
Some teleprocessing monitors automatically convert mixed case passwords into uppercase before processing by CA Top Secret. These monitors cannot match a mixed case password.
A password specified by the ADDTO command function replaces the ACID's previous password.
When used by an administrative ACID, this keyword has the following format:
TSS ADDTO(acid) PASSWORD(password[,0...255],
[EXPIRED])
[FACILITY(facility) MULTIPW]
TSS ADDTO(acid) PASSWORD(NOPW)
[FACILITY(facility) MULTIPW]
Valid values for password include:
Indicates that the current password will not change.
Expiration interval (days) set for the current password before it expires. 0 indicates a non-expiring password. If not specified in the PASSWORD keyword specification, for ADD or CREATE the expiration interval defaults to the PWEXP control option value. For example:
TSS ADD(acid) PASSWORD(pass1) TSS ADD(acid) PASSWORD(pass1,,EXP)
If not specified in REPLACE the expiration interval currently set for the ACID is retained. For example:
TSS REP(acid) PASSWORD(pass1) TSS REP(acid) PASSWORD(pass1,,EXP)
Causes ACID's password to automatically expire, forcing the ACID to enter a new password at signon. When the CA Top Secret administrator does a TSS LIST against the ACID that was set to automatically expire, a password expiration date of 01/01/80 appears, but with a correct expiration interval. This alerts the administrator that the user must change his password on the first logon.
Indicates ACID does not require a password.
When a FACILITY is supplied with the MULTIPW keyword, the PASSWORD applies only to the specific facility. Specifying a MULTIPW facility password allows the administrator to account for variations in mixed case and extended length passwords.
Separate password history is provided for each MULTIPW facility password.
This keyword is required when a new password is added by an administrative ACID for a designated facility.
When a non-administrative ACID assigns a new password in a facility where an administrator assigned a MULTIPW facility password, they must include the MULTIPW and FACILITY options to target the correct facility for the change.
This keyword is used with:
This example replaces USER56's previous password with WORK and prompts him to change his password immediately during his first signon. He is forced to change his password every nine days.
TSS ADDTO(USER56) PASSWORD(WORK,9,EXP)
In this example USER56 signs on with this password until it expires in 30 days (or the default set by the PWEXP control option) or until he changes it on his own. This assumes that the NEWPW control option is not set to NU to prevent USER56 from changing his own password.
TSS ADDTO(USER56) PASSWORD(WORK)
This example shows a non-administrator (USER56) with the default NEWPW option set of MIN=4,MAX=8,MINDAY=1,WARN=3:
TSS REPLACE(USER56) PASSWORD(ALLEN11)
If the NEWPW option NR=1 is set, the above password change fails.
This example replaces USER01's expiration interval without changing or knowing USER01's password:
TSS ADDTO(USER01) PASSWORD(*,10)
|
Copyright © 2009 CA Technologies.
All rights reserved.
|
|