I would like to limit certain users to passwords that never expire, and have other users have to change their passwords every 30 days. I'm looking for a way of ensuring that they stay this way AFTER the profile is created. Can you help?
First, I recommend that you set the QPWDEXPITV system value to the value that you want to apply to the majority of your users, e.g. 30. Then you can set the exceptions, e.g., *NOMAX, using the password expiration interval parameter in the user profile itself. You can use the PRTUSRPRF (Print user profile) command to produce a report of all the users on your system. The password expiration interval is one of the parameters that's reported in the *PWDINFO report.
MORE INFORMATION ON THIS TOPIC
The Best Web Links: tips, tutorials and more.
Search400's targeted search engine: Get relevant information on security.
Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.
Check out this Search400.com Featured Topic: Top ten security tips
Dig Deeper on iSeries system and application security
Related Q&A from Carol Woodbury
Before changing password levels and upgrading operating systems on the AS/400, ensure the clients connecting to the NetServer do not need the old ... Continue Reading
Look in the audit journal (QAUDJRN) on the AS/400 for an authority failure message with the name of the library as the object name. Use the ... Continue Reading
The UPPWEI field corresponds to the password expiration interval field, and its values "0" and "-1" represent the *SYSVAL and *NOXMAX commands. Continue Reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.