0

I am new to IBM AS400. Recently there is a need in my company to implement a 90 days password change for all users. The problem is some users won't change their password even if we already notify them in advanced (notify through email or from AS400 itself). The first option is to have a QSECOFR account that would change the password automatically. The second option is to set PWDEXP value to *Yes and wait for the password to expire and it would notify the user to change. I am trying to mitigate if somehow the users were not able to change their password individually and would require someone else. Now imagine that there are 100 of user who needs to recover their account and using a super admin would require to manually change the password one by one. My question is can you change or recover the password of the user simultaneously?

Improve this question
11
  • 1
    Is this an actual programming-related question? Commented Aug 13, 2024 at 9:15
  • 1
    It is more on the configuration for AS400. Commented Aug 13, 2024 at 9:20
  • 1
    Please have a look at the tour and How to Ask. SO is a Q&A website for programming-related questions Commented Aug 13, 2024 at 9:24
  • 1
    I’m voting to close this question because it belongs on serverfault.com Commented Aug 13, 2024 at 13:39
  • 2
    In principle, I agree that this question is probably better suited to Server Fault, but (1) the IBM midrange tag seems to be barely established there (which I realize is a bit of a chicken-and-egg problem), so for better or for worse, it will get more eyeballs here, and IBM midrangers tend to dabble in both programming and admin; and (2) there is a gray area where server config problems might be best handled with some programming. This question is plausibly welcoming programming solutions, though I will grant that if that is what is being sought, then the text could make that more explicit. Commented Aug 13, 2024 at 13:54

1 Answer 1

Reset to default
0

Put 90 into system value QPWDEXPITV like this, from the AS400 command line,

chgsysval sysval(QPWDEXPITV) VALUE(90)

= = =

From the AS400 command line type,

WRKSYSVAL SYSVAL(*SEC)

Shows you all the system values related to security.

Look through them and you will see the above system value whose description is "Password expriation interval". Setting it to 90 means the passwords on the system have to change every 90 days. There is also system value QPWDEXPWRN, default 7 , this is the number of days before the password expires the AS400 will start warning the user.

Hope that helps.

The way to switch it off again is

chgsysval sysval(QPWDEXPITV) VALUE(*NOMAX)
Improve this answer
Sign up to request clarification or add additional context in comments.

Comments

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.