iSeries – Monitoring QSECOFR when it becomes disabled

0 pts.
Tags:
AS/400
DataCenter
Security
What AUTOMATIC process could I put in place if I want to be notified by the system, when QSECOFR becomes *DISABLED? I have QAUDJRN on, and if QSECOFR becomes disabled, an entry is added. I don't know of a way to automatically be notified if QSECOFR becomes disabled. We are in a 24/7/365 shop, so QSYSOPR message queue is monitored at all hours. Thanks to all! Bruno (aka Mutkey)
ASKED: September 12, 2005  5:53 PM
UPDATED: November 10, 2009  2:19 PM

Answer Wiki

Thanks. We'll let you know when a new response is added.

AS you refer to QSYSOPR being monitored…..

When a profile is disabled, message CPF1393 is automatically sent to QSYSOPR message queue.

Discuss This Question: 4  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • JPLamontre
    *disabled is the NORMAL state of qsecofr : this makes qsecofr usage reserved from the system console. it's not really your problem, but you will probably have to turn on this security rule.
    0 pointsBadges:
    report
  • TomLiotta
    It shouldn't matter if QSECOFR is disabled. You shouldn't be using it anyway, unless IBM gives you instructions to use it. Use a different *SECOFR profile. Tom
    125,585 pointsBadges:
    report
  • TomLiotta
    However, if you really want a method, then code a CL program that executes RCVJRNE EXITPGM() and also code the exit program. The RCVJRNE command should filter just the T/CP entries. The exit program would check if the ESD subtype (Type of entry) is 'A' and if the User Profile Name is 'QSECOFR'. If so, then the ESD Profile Status would be checked for '*DISABLED'. At that point, you'd do whatever you wanted your program to do. Tom
    125,585 pointsBadges:
    report
  • Pmaddox
    We use some 3rd party software which monitors for things like this (comes with hardware maintenance) but what I'd be really interested in is how to trace where invalid passwords are being entered from. Our OPERATOR password is forever being disabled and we have no idea how !!
    140 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following