We have users that connect to our iSeries through IFS only. They log on by a personal user ID and not by a guest profile. My problem is that I can't see a user's last logon (i.e. mapping to IFS), which makes it impossible to disable user IDs that haven't been used for 60 days. I can't see in the USRPRF if a user's ID has been disabled -- it is seen only in QSYSOPR MSGQ. Have you any tips for this problem?
You might try looking at the last used day of the user profile rather than the last sign-on date. The last sign-on date will be updated only when the user enters his user ID and password at a sign-on screen. But if he is connecting to the system with his user ID when mapping the drive, the last used date should be updated.
MORE INFORMATION ON THIS TOPIC
The Best Web Links: tips, tutorials and more.
Search400's targeted search engine: Get relevant information on security.
Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.
Check out this Search400.com Featured Topic: Top ten security tips
Dig Deeper on iSeries system and application security
Related Q&A from Carol Woodbury
Before changing password levels and upgrading operating systems on the AS/400, ensure the clients connecting to the NetServer do not need the old ... Continue Reading
Look in the audit journal (QAUDJRN) on the AS/400 for an authority failure message with the name of the library as the object name. Use the ... Continue Reading
On AS/400, the journal type AF subtype K, shows that a user profile lacks the special authority required by the function attempting to run. Continue Reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.