If you have OS/400 auditing turned on and your have specified *AUTFAIL for the QAUDLVL system value, you may be able to find the information you need in the general heading information for the PW audit journal entry that is created when an invalid password is entered. Details on OS/400 auditing can be found at the IBM InfoCenter in the iSeries Security Reference manual, Chapter 9 and Appendix 7. If the audit entries don't provide enough information, you may be able to get the information you need from the log entries generated by some of the network access exit program vendors.
================================== MORE INFORMATION ON THIS TOPIC ==================================
The Best Web Links: tips, tutorials and more.
Search400's targeted search engine: Get relevant information on security.
Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.
Check out this Search400.com Featured Topic: Top ten security tips
This was first published in June 2004