Home > IT Answers > AS/400 > Changing Passwords on AS/400
Cat2010
55 pts.
 Changing Passwords on AS/400
AS/400, AS/400 Password complexity, AS/400 security
When any of our users try and use a special character @# or undersore in their password the get the error message - Password does not meet password rules return code 1.Example of password - aa#12345

 Our sysval QPWDLVL is set at 0

 Thank you.



Software/Hardware used:
ASKED: June 23, 2010  3:39 PM
UPDATED: June 24, 2010  1:34 PM
RELATED QUESTIONS
 
  Help
 Approved Answer - Chosen by ITKE

Thanks to all.....our problem is the Validation Proglrm written by an outside vendor for another application....

ANSWERED:  Jun 24, 2010  1:34 PM (GMT)  by ITKE
 
Other Answers:

Look at the system value QPWDLMTCHR. It may have the characters you are trying to use as an excluded. IBM has <a href=”http://publib.boulder.ibm.com/infocenter/iseries/v5r4/index.jsp?topic=/rzakz/rzakzpasswordoverview.htm”>information on passwords</a> at the i5/OS Information Center.

=============================================================

The message should be:<pre>
Message ID . . . . . . . . . : CPF22C0
Message file . . . . . . . . : QCPFMSG
Library . . . . . . . . . : QSYS

Message . . . . : Password does not meet password rules. Return code &1.
Cause . . . . . : The specified password breaks the password rules (system
value QPWDVLDPGM) for your system. The return code is &1.
Recovery . . . : Specify a new password that follows the password rules for
your system.</pre>
If you looked at the help text, it would have told you where to look to see where the problem might be.

Look first at system value QPWDVLDPGM to see if a password validation program has been assigned. Rules that are not part of normal system-value password rules can be implemented in a password validation program.

If you have difficulty determining whether a password validation program is assigned, post back here. Include the value you find in the QPWDVLDPGM system value and your OS version/release.

Tom

Last Wiki Answer Submitted:  June 24, 2010  5:40 am  by  TomLiotta   107,735 pts.
Latest Answer Wiki Contributors:  hafwhit   1,145 pts.
To see other answers submitted to the Answer Wiki: View Answer History.


RSS - Discussions Help
Discuss This Question:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

 

Thank you ….I checked QPWDLMTCHR and the value is set to *NONE

Cat2010
 55 pts.
 

Is it possible that another rule is problem? The example you gave “aa#12345″ has two a’s in it and the system value QPWDLMTREP may be set to not allow it. Go to the link in my answer and see how all the other values are set.

hafwhit
 1,145 pts.
 

All values have been checked…..I’m thinkng it may have to do with the User Class or Special authority values in the basic profile…..with QSECOFR authority I can reset the user password using special characters but my users can’t do this themselves……

Cat2010
 55 pts.
 

If you use CHGUSRPRF to reset the password then you don’t have to follow the rules. Run the following command and post the results.

WRKSYSVAL SYSVAL(QPWD*) OUTPUT(*PRINT)
hafwhit
 1,145 pts.
 

5722SS1 V5R4M0 060210
Current Shipped
Name value value
QPWDEXPITV > 90 *NOMAX
QPWDLMTAJC 0 0
QPWDLMTCHR *NONE *NONE
QPWDLMTREP 0 0
QPWDLVL 0 0
QPWDMAXLEN > 10 8
QPWDMINLEN > 8 6
QPWDPOSDIF 0 0
QPWDRQDDGT > 1 0
QPWDRQDDIF > 4 0
QPWDVLDPGM > QGPL/CXPWDC *NONE

Cat2010
 55 pts.
 

With your Password Level set to 0 here is the following rule

Short passwords using a limited character set. (0)
Supports user profile passwords with a length of 1-10 characters. The allowable characters are A-Z, 0-9, and the following special characters: dollar sign ($), at sign (@), number sign (#), and underscore (_).
The special characters don’t seem to be the problem

Rickmcd
 1,480 pts.