Valid on z/OS and z/VM.
Use the INACTIVE control option to specify the number of days before CA Top Secret denies an unused ACID access to the system after that ACID's password has expired.
This option prohibits the use of ACIDS that have not been used for long periods of time. This “period of time” starts from the day that the ACID's password expired and continues through the number of days that the security administrator specified in the INACTIVE control option. If CA Top Secret does not detect activity for an ACID within this time period, it will deny access to the system to any user or job using this ACID by suspending the ACID
All entry methods are accepted.
This control option has the following format:
INACTIVE(0|nnn)
The number of days after which an ACID connected to an expired password is prohibited from signing on.
Range: 1 to 255
(Default) Deactivates the INACTIVE option.
This example denies access to any user or job that attempts to access the system by using that ACID if an ACID is not used for five consecutive days after its password expires.
INACTIVE(5)
The user could avoid the situation described above by changing his password before the expiration date, or by changing his password within the five‑day threshold specified in the INACTIVE control option.
This example reactivates an INACTIVE ACID by removing SUSPEND from user and replacing the password specifying the expiration interval or expire option:
TSS REMOVE(acid) SUSPEND
Use only one of the following entries to replace the password.
TSS REPLACE(acid) PASSWORD(xxx,030) TSS REPLACE(acid) PASSWORD(xxx,,EXP)
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|