Q
Manage Learn to apply best practices and optimize your operations.

Preventing users from using default passwords

I changed the QOWDRQDDGT to one to eliminate default passwords, but the user's still able to change the password to be the same as the user name. What's happening here? What can I do to ensure that users cannot use default passwords?

I changed the QOWDRQDDGT to one to eliminate default passwords, but the user's still able to change the password to be the same as the user name. What's happening here? What can I do to ensure that users cannot use default passwords?
Once you change one of the password composition rule system values (QPWD*), users cannot change their passwords through the Change Password (CHGPWD) command to be a default password (a password the same as the user profile name.) However, if the user has access to the Change User Profile (CHGUSRPRF) command, the password composition rule system values are (intentionally) by-passed and they can set the password to be any password they wish – including a default password. CHGUSRPRF should only be available for use by Administrators whose responsibility is managing profiles.

==================================
MORE INFORMATION ON THIS TOPIC
==================================

The Best Web Links: tips, tutorials and more.

Search400's targeted search engine: Get relevant information on security.

Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.

Check out this Search400.com Featured Topic: Top ten security tips

Visit the ITKnowledge Exchange and get answers to your security questions fast.

Dig Deeper on iSeries system and application security

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

SearchDataCenter

Close