IT Answers » QSECOFR

QSECOFR Profile Creation

didinu — Mon, 03 Dec 2012 17:56:45 +0000

New Discussion Post by TomLiotta

How to enable a user Profile

natsnella — Thu, 27 Sep 2012 19:57:17 +0000

New Discussion Post by MDratwa

Security and QSECOFR number of sign-ons

Gmil494 — Sun, 03 Jun 2012 22:21:02 +0000

For security purposes, the number of sign-on attempts can be *NOMAX or as few as one. I configured for 3 maximum sign-ons. Does anyone know if the OS/security sums the total number of sign-on attempts from the device only before it disables the device, or does the OS not count total from the device, but total for the userID/profile before it disables the device (terminal)?

DST & Qsecofr password Reset

kingstoniseries — Thu, 31 Mar 2011 03:36:42 +0000

hi, anyone help how to reset the Qsecofr usrprf id & Dst Id if Disabled. thanks kingston

Forgot QSECOFR password in AS/400 and don’t have another user ID

Maltaf — Thu, 04 Nov 2010 06:20:27 +0000

I FORGOT QSECOFR PASSWORD in a new system and donot have any other ID with *SECADM and *ALLOBJ authority. What should I do. but I have *PGM authority in one ID.

SST and access id recovery

FrankStacey — Mon, 11 Oct 2010 21:42:35 +0000

We have a 9407 M15 without a HMC. On the odd occasion we have required it we have used a remote LAN console setup on a pc. However I have either forgotten the special Access id or it has expired and I am unable to connect the console pgm. To compound the issue I am unable to logon on to SST as the password has also either expired or been changed without recording the password somewhere. I reset the qsecofr sst id using chgdstpwd *default but when I try and log on with this I get into a catch22 where it says the password has expired but when I try and change it I get an error that I am not authorised to change the password!! The IBM techs are confounded but hopefully a software guy will respond to the job logged and be able to assist. In the meantime does anyone here have any suggestions to resolve this impasse.

is it possible to enter into SST and DST other than QSECOFR??

Wed, 14 Oct 2009 09:21:07 +0000

is it possible to enter into SST and DST other than QSECOFR??

QSECOFR user profile is not allowed in TCP/IP socket mode!

Chabsta — Thu, 01 Oct 2009 18:47:13 +0000

I am getting an error message when I try to connect to the i5 with a Windows based query application.
QSECOFR user profile is not allowed in TCP/IP socket mode!
I read a couple of articles, it might has something to do with an FTP restriction on i5 side. Could anyone point me to right direction?
I also tried another profile which has higher authority level than the QSECOFR profle(QSECADM). I am getting another communication error message:
ICASRV subsystem not loaded on AS/400, server address 192.168.1.15!
Any suggestions. Thanks in advance.

AS/400 security: remove backdoor to changing user profile rights

Sergiov — Fri, 07 Aug 2009 11:35:02 +0000

how do i find a program which is a backdoor which allows user to change his authority to qsecofr or *secadm? We have changed his profile and he keeps changing it back. And yes we have changed the security officer password numerous times.

QSECOFR device access

Yorkshireman — Mon, 01 Jun 2009 11:11:26 +0000

with *AUTL’s in active use, what is determining that a particular user profile only has access to a particular WS device?

specifically, we have a SECOFR level user profile who can only access a single WS. She needs to be able to sign on with that profile from ‘any’ screen.

I seem to dimly remember that there used to be a value on the user profile which determined the sessions. values are set thus:
LMTCPB(*NO)
LMTDEVSSN(*NO)

signon is greeted with ‘not authorised to device’ so I’m suspecting that a specific authority needs to be granted to ?? something?? and it isn’t really anything to do with the USRPRF.