I am moving a level security 30. Is there a manual or check list to do it?
Chapter 2 of the
iSeries Security Reference Manual
has the steps to take to move between the various security levels. The key to moving from security level 20 to level 30 is determining where users will get their authority since the system removes user's *ALLOBJ when the system is IPLed. I suggest using adopted authority to allow applications to work and setting the *PUBLIC authority of objects to *EXCLUDE or, at most, *USE. You can test out your new security architecture before IPLing to the new security level. Make all of the program changes (change them to adopt authority), set the *PUBLIC authority of the objects and remove several users' *ALLOBJ. When they come in the next day, they'll be testing the new architecture and no other users will be affected.
Dig Deeper on iSeries system and application security
Before changing password levels and upgrading operating systems on the AS/400, ensure the clients connecting to the NetServer do not need the old ...
Look in the audit journal (QAUDJRN) on the AS/400 for an authority failure message with the name of the library as the object name. Use the ...
The UPPWEI field corresponds to the password expiration interval field, and its values "0" and "-1" represent the *SYSVAL and *NOXMAX commands.
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.