Manage

Changing password security levels and upgrading operating systems on the IBM i

Before changing password levels and upgrading operating systems on the AS/400, ensure the clients connecting to the NetServer do not need the old Lanman password and customize the sign-on screen that provides a 128-character password field.

Carol Woodbury, SkyView Partners

Published: 30 Apr 2009

We are planning a change from Password Level 0 to Password Level 2, and eventually to Level 3. Do you have any planning tools and/or documents that will help us prepare for this change? We have 3 System i servers: production, backup (DR) with replication using iTera HA, and a separate development server that currently has two partitions.

We are also interested in upgrading our operating systems. For production and backup, we want to go from V5R3 to V6R1, and for development, we want to move from V5R4 to V6R1. How will this affect our change in password level planning?

IBM provides planning information for changing this system value in Chapter 3 of the Security Reference manual beginning in V5R4.

The main considerations are ensuring that the clients connecting to the NetServer don't require the old Lanman password. In addition, if you've customized your sign-on screen, you'll have to customize the version that provides a 128-character password field. This field, as well as the password field on CHGPWD, CRTUSRPRF and CHGUSRPRF commands all switch to allow 128-character passwords.

Finally, changing the levels requires an IPL before they take affect. While the version of the software the clients are running does need consideration, the release of the server (i5/OS), shouldn't be an issue.

Dig Deeper on iSeries system and application security

Security Think Tank: Cracking the code – what makes a good password? In light of the fact complex passwords are not as strong as most people think, and that most password strategies inevitably lead to people following them blindly, what actually makes a good password and when is a password alone not enough?

Security Think Tank: Passwords alone are not good enough In the light of the fact that complex passwords are not as strong as most people think, and that most password strategies inevitably lead to people following them blindly, what actually makes a good password and when is a password alone not enough?

Security Think Tank: Firms need to support good password practices In the light of the fact that complex passwords are not as strong as most people think and that most password strategies inevitably lead to people following them blindly, what actually makes a good password and when is a password alone not enough?

Security Think Tank: How to create good passwords and add security layers In light of the fact complex passwords are not as strong as most people think and most password strategies inevitably lead to people following them blindly, what actually makes a good password - and when is a password alone not enough?

Security Think Tank: Complex passwords provide a false sense of security In the light of the fact that complex passwords are not as strong as most people think, and that most password strategies inevitably lead to people following them blindly, what actually makes a good password and when is a password alone not enough?

Security Think Tank: Put more layers around passwords to up security In light of the fact that complex passwords are not as strong as most people think and most password strategies inevitably lead to people following them blindly, what actually makes a good password and when is a password alone not enough?

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our AS/400 experts

View all AS/400 questions and answers

Changing password security levels and upgrading operating systems on the IBM i

Before changing password levels and upgrading operating systems on the AS/400, ensure the clients connecting to the NetServer do not need the old Lanman password and customize the sign-on screen that provides a 128-character password field.

Dig Deeper on iSeries system and application security

Related Q&A from Carol Woodbury

Provide authorization in order for a user to start a subsystem within startup routine

Define journal code value "K"

Determine the value of parameter UPPWEI in the DSPUSRPRF field

Have a question for an expert?

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchDataCenter

Comparing Linux distributions: Red Hat vs. Ubuntu

Get eco-friendly with LEED data center certification

Top 4 open source automation tools for admins

Dig Deeper on iSeries system and application security

Related Q&A from Carol Woodbury

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.