hey Jinteik,
i don't know in what way it violates system security....(changing their own password)
do we need *secadm authority,by giving this user will get few more authorities..which is not good. i have to give only password change option to the user?
any inputs pls
I suspect that it isn't the authority to change passwords that is the problem. The problem is that users don't have access to any of the "change password" options.
For example, they might not have access to a command line. Or if they do, they don't have capability to run GO USER or CHGPWD. (I have no idea why anyone would be so restrictive, but it's common enough. Usually there are no reasons behind it. Well, technically, the reason is usually because security was improperly assigned in the past; so the resolution was to lock all users out of everything.)
Allowing access either the the USER menu or the CHGPWD command should be sufficient. The question becomes how to do that, and the answer depends on why users can't do it now.
Tom
what authority will give access to the users to change their password.
They should all already have that authority. If they don't, then someone removed some authority. You will have to tell us what authority was removed. You can do that by trying to answer the questions that have been asked.
Also, it might not be an authority problem. It might be a capability problem. Maybe all you need to do is set ALWLMTUSR( *YES ) on the CHGPWD command.
Tom
Discuss This Question: 7  Replies