Your admin shuold not know your user’s password as it is good practice to mark the initial password as expired when the user profile is created.
Your admin (or somebody with *SECADM special authority) should run the command:
CHGUSRPRF USER(users_id) PASSWORD(temp_pwd) PWDEXP(*YES)
The temp_pwd can be anything, for example the day of the week, etc. Specifying PWDEXP(*YES) will flag the password as expired and the user will then have to change it as soon as they sign-on.
Doing it this way ensures that the admin is not aware of the user’s password and adds a level of security to the system.
Hope it helps
The CHGUSRPRF command can be in a compiled CL program. (The command should include the STATUS(*ENABLED) parameter value.) The program can be compiled with USRPRF(*OWNER) as an attribute and then be owned by a powerful profile. The *PUBLIC can be granted *USE authority to the program.
With that program, any user could call it to reset to reset their own password — if they could get signed on to call the program!
Now, the program could first run RTVJOBA to retrieve the name of the user running the program and issue a prompt for the user profile to reset. The program would send a message to an adminstrator’s message queue to log who was resetting whose password. It should also use RTVUSRPRF against the user profile being reset to ensure that only *DISABLED profiles were being reset; the program should send an administrative message and end otherwise.
That makes it easy for users to help each other.
Further, there could be a RESET profile that anybody could sign on to with this program as the initial program and *SIGNOFF as the initial menu. That would make a fairly easy do-it-yourself function, but it would make it very difficult to know who ran the the program. If desired, the program could issue one or more ‘challenge/response’ questions to help identify a user.
Lots of possibilities — it’s definitely best to have a trusted and identified second user involved (and to log the action in a secure fashion). Authority to use the program might be granted to a group of managers and/or supervisors.