Manage Learn to apply best practices and optimize your operations.

Determining how the profile got disabled

Is there a way to determined who/how/where a profile get disabled? Our system security level is set at 40. We recently changed the password on one of the operation profiles, and now it continuously logs in with the wrong password and eventually it gets disabled. I suspect it is an ODBC job, but I don't know which client it's coming from. Do you know of any tools that would help me troubleshoot this?
If you have OS/400 auditing turned on and your have specified *AUTFAIL for the QAUDLVL system value, you may be able to find the information you need in the general heading information for the PW audit journal entry that is created when an invalid password is entered. Details on OS/400 auditing can be found at the IBM InfoCenter in the iSeries Security Reference manual, Chapter 9 and Appendix 7. If the audit entries don't provide enough information, you may be able to get the information you need from the log entries generated by some of the network access exit program vendors.


The Best Web Links: tips, tutorials and more.

Search400's targeted search engine: Get relevant information on security.

Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.

Check out this Search400.com Featured Topic: Top ten security tips

Dig Deeper on iSeries system and application security

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.