CHGDSTPWD2 -- Change DST Password 2 - Reset DST Default Pwds

CHGDSTPWD2 CHANGE DST PASSWORD 2 TAASEFW
The Change DST Password 2 command resets the DST password to the default value and sets the password to expired. The purpose of the command is allow a user who is not QSECOFR to reset the DST password. CHGDSTPWD2 may only be used interactively by a user who is authorized to the TAADSTPWD2 authorization list. Note that this is the DST password and not the password for the QSECOFR USRPRF object. The system periodically disables the DST password. CHGDSTPWD must be used to reset the password, but may only be entered by a user who is signed on as QSECOFR (Program adopt and Group adopt may not be used). CHGDSTPWD2 allows for other trusted users to be able to reset the password. You must be at level 30 security or greater to use CHGDSTPWD2. A typical command would be: CHGDSTPWD2 During the running of CHGDSTPWD2, the QSECOFR profile is adopted and then swapped to by the use of an API. After CHGDSTPWD is run internally, the current profile is switched back to. The system CHGDSTPWD command is shipped as ALLOW(INTERACT) meaning the command may only be entered interactively. Because a CL program is being used by CHGDSTPWD2, the system CHGDSTPWD command is temporarily set to ALLOW(IPGM BPGM) and then reset to the original value after CHGDSTPWD is used. Thus at the completion of the command: The DST password is reset to the default and is expired. The user of the command is reset to be the user of the job. ** The CHGDSTPWD ALLOW parameter is reset to the value found when the CHGDSTPWD2 command began. A journal entry of Code U and Type D2 is sent to the QAUDJRN journal if it exists. If there is no audit journal, a message is sent to QHST. CHGDSTPWD escape messages you can monitor for --------------------------------------------- None. Escape messages from based on functions will be re-sent. Command parameters CMD ------------------ PASSWORD The only value is DEFAULT which resets the DST profile to the system shipped default value. The purpose of showing the value is as a reminder of what the command will do. Restrictions ------------ CHGDSTPWD2 may only be used interactively. The user of the command must be authorized to the TAADSTPWD2 authorization list. You must be at level 30 security or greater to use CHGDSTPWD2. Prerequisites ------------- The following TAA Tools must be on your system: RTVCMDA Retrieve command attributes SNDAUDE Send audit entry SNDCOMPMSG Send completion message SNDESCINF Send escape information SNDESCMSG Send escape message Implementation -------------- None, the tool is ready to use. Objects used by the tool ------------------------ Object Type Attribute Src member Src file ------ ---- --------- ---------- ---------- CHGDSTPWD2 CMD TAASEFW QATTCMD TAASEFWC PGM CLP TAASEFWC QATTCL

CHGDSTPWD2      CHANGE DST PASSWORD 2                  TAASEFW


The  Change DST  Password 2  command  resets the  DST  password to  the
default value  and sets the  password to expired.   The purpose  of the
command  is allow a user who is not  QSECOFR to reset the DST password.
CHGDSTPWD2 may only be used  interactively by a user who  is authorized
to the TAADSTPWD2 authorization list.

Note  that this  is  the DST  password  and not  the  password for  the
QSECOFR *USRPRF object.

The  system periodically disables the DST  password.  CHGDSTPWD must be
used to reset the password,  but may only be  entered by a user who  is
signed on as QSECOFR  (Program adopt and Group adopt  may not be used).

CHGDSTPWD2  allows for  other trusted  users  to be  able to  reset the
password.

You must be at level 30 security or greater to use CHGDSTPWD2.

A typical command would be:

            CHGDSTPWD2

During the running of  CHGDSTPWD2, the QSECOFR  profile is adopted  and
then  swapped to  by  the  use  of an  API.    After CHGDSTPWD  is  run
internally, the current profile is switched back to.

The  system CHGDSTPWD  command is  shipped as  ALLOW(*INTERACT) meaning
the  command may only  be entered interactively.   Because a CL program
is  being  used  by   CHGDSTPWD2,  the  system  CHGDSTPWD   command  is
temporarily set  to ALLOW(*IPGM *BPGM)  and then reset to  the original
value after CHGDSTPWD is used.

Thus at the completion of the command:

  **   The DST password is reset to the default and is expired.

  **   The user of the command is reset to be the user of the job.

  **   The  CHGDSTPWD ALLOW parameter is reset  to the value found when
       the CHGDSTPWD2 command began.

A journal entry of Code  U and Type D2 is  sent to the QAUDJRN  journal
if it  exists.   If there  is no audit  journal, a  message is  sent to
QHST.

CHGDSTPWD escape messages you can monitor for
---------------------------------------------

None.  Escape messages from based on functions will be re-sent.

Command parameters                                    *CMD
------------------

   PASSWORD      The  only  value  is  *DEFAULT  which  resets the  DST
                 profile to  the system  shipped  default value.    The
                 purpose  of showing  the  value is  as  a reminder  of
                 what the command will do.

Restrictions
------------

CHGDSTPWD2 may only be used interactively.

The  user  of  the   command  must  be  authorized  to  the  TAADSTPWD2
authorization list.

You must be at level 30 security or greater to use CHGDSTPWD2.

Prerequisites
-------------

The following TAA Tools must be on your system:

     RTVCMDA         Retrieve command attributes
     SNDAUDE         Send audit entry
     SNDCOMPMSG      Send completion message
     SNDESCINF       Send escape information
     SNDESCMSG       Send escape message

Implementation
--------------

None, the tool is ready to use.

Objects used by the tool
------------------------

   Object        Type    Attribute      Src member    Src file
   ------        ----    ---------      ----------    ----------

   CHGDSTPWD2    *CMD                   TAASEFW       QATTCMD
   TAASEFWC      *PGM       CLP         TAASEFWC      QATTCL

Added to TAA Productivity tools October 15, 2003

Home Page

Up to Top