We have users that connect to our iSeries through IFS only. They log on by a personal user ID and not by a guest profile. My problem is that I can't see a user's last logon (i.e. mapping to IFS), which makes it impossible to disable user IDs that haven't been used for 60 days. I can't see in the USRPRF if a user's ID has been disabled -- it is seen only in QSYSOPR MSGQ. Have you any tips for this problem?
You might try looking at the last used day of the user profile rather than the last sign-on date. The last sign-on date will be updated only when the user enters his user ID and password at a sign-on screen. But if he is connecting to the system with his user ID when mapping the drive, the last used date should be updated.

==================================
MORE INFORMATION ON THIS TOPIC
==================================

The Best Web Links: tips, tutorials and more.

Search400's targeted search engine: Get relevant information on security.

Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.

Check out this Search400.com Featured Topic: Top ten security tips


This was first published in March 2004

Back to top