I have the CHGUSRPRF command on a menu so that our network staff can reset a user's profile back to the password of NEW. CHGUSRPRF ??USRPRF() ?*PASSWORD(NEW) ?*PWDEXP(*YES). Is their anyway they can run this command without having *ALLOBJ authority, and can authority be adopted for this?
Most shops have a way for operations staff to handle user profile/password problems such as: a new password, and re-enabling a disabled user profile. You could write a small CL program to execute the CHGUSRPRF command, adopting the OWNER authority of the CHGUSRPRF command. This will allow users -- not ordinarily having access to this command -- to fix up a user profile problem. As is always recommended, you should have system auditing running on your system.
MORE INFORMATION ON THIS TOPIC
The Best Web Links: Tips, tutorials and more.
Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.
Read this Search400.com Featured Topic: Monitoring your iSeries system .
Ask the Experts yourself: Our systems management gurus are waiting to answer your technical questions.