Announcement

**jamief** · March 9, 2007, 10:26 AM

Re: Password requirements

You cant require a special character and it will not work with lowercase on the
greenscreen side...not sure about client access for the web...but I can tell you in a
week or so cause im setting it up as we speak.

to see all system values that deal with passwords
type:

wrksysval QPWD*

I cant answer the password validation program question cause Ive never used it.

**Billw** · March 9, 2007, 10:36 AM

Re: Password requirements

According to help text:

QPWDLVL *SEC Password level
Levels 2 & 3
The system supports user profile passwords from 1-128
characters. Upper and lower case characters are
allowed. Passwords can consist of any character and the
password will be case sensitive.

Bill

**mark_a_hall** · March 9, 2007, 10:38 AM

Re: Password requirements

We are at password level 2 and I am able to use passwords that are a mix of upper and lowercase using client access and up to 128 characters (although I haven't actually tried one that long...too lazy). I have not tried it using a dumb terminal (console) but would expect it to be able to handle it.

**jamief** · March 9, 2007, 10:47 AM

Re: Password requirements

Im not sure how a green screen would handle a field 128 *char long unless it
used CNTFLD keywork anyway you can look at you current DDS for QDSIGNON
I would be interested if it were "different" other wise I dont think it would work...
Thanks
jamie

**Billw** · March 9, 2007, 10:49 AM

Re: Password requirements

Yes it works fine in green screen. It looks kind funny seeing the password wrapped around the screen. Just can't get used to it.

Ya try a 128 character password, guarantee the users will breaching your secuirty policy, they'd have to write them down.

I believe in keeping passwords short and to the point. If you over complicate them then users will write them down rather than remember them.

Good Luck

PS: It wraps the screen

**jamief** · March 9, 2007, 10:53 AM

Re: Password requirements

bill can you get at the dds?

I curious if there is the CNTFLD and LC keywords....just cause Im curious.

Also are there system values on your box I dont have because of the password 2 setting?

if the screen was modified then you can get the signon screen name from the subsystem description....

**Billw** · March 9, 2007, 12:20 PM

Re: Password requirements

SDA and Source screen shot from V5R3 QDsignon2 btw. Password just wraps the screen.

Attached Files

**jamief** · March 9, 2007, 12:48 PM

Re: Password requirements

thank you sir!

**arrow483** · March 9, 2007, 01:45 PM

Re: Password requirements

One thing to note is that the iSeries passwords ARE in mixed case. But with the "short" password values, it ignores the case. This is important because if you move to the mixed-case options, your existing passwords might be upper or lower or even mixed case, depending on how they were entered.

I did this at one site, about 1/2 were able to signon. The others could sign on only by using the caps lock on, until they changed their passwords.

**jamief** · March 9, 2007, 01:59 PM

Re: Password requirements

What you wont do to have fun...You wild man

Thanks for the info.

**FaStOnE** · March 12, 2007, 08:00 AM

Re: Password requirements

Is it possible to require a mix of upper and lower case characters?

Yes, but you need to use the advanced functions for passwords. It removes the 10 character limit and adds a lot to the passwords.

Is it possible to require a special character (I know you can require a number)?

Yes but only with a password verification program.

If you use a password validation program would it be possible to put it in debug and see the users password.

The answer is Yes. This is why this program must be managed properly. No debug, and it also should be owned by QSECOFR and secured down as tight as you can do it.

-R

(These answers were given by our system admin... he also has a job he created called CHGRMTPWD which, if you have multiple systems, allows you to change the password on ALL systems at one time. It's pretty slick. If anyone's interested... just reply here and I'll try to talk him into sharing the code.)

**gcraill** · March 12, 2007, 10:33 PM

Re: Password requirements

Originally posted by FaStOnE View Post

(These answers were given by our system admin... he also has a job he created called CHGRMTPWD which, if you have multiple systems, allows you to change the password on ALL systems at one time. It's pretty slick. If anyone's interested... just reply here and I'll try to talk him into sharing the code.)

We use MIMIX to do this on our production boxes, but we have no MIMIX license for the dev box, could be interesting. Is it using TCPIP or SNA ?

GC

**FaStOnE** · March 14, 2007, 07:30 AM

Re: Password requirements

It's based on Secure TCPIP.

**gcraill** · March 17, 2007, 02:10 AM

Re: Password requirements

Originally posted by FaStOnE View Post

It's based on Secure TCPIP.

Well I'd be interested if he will share the code with us ...

Announcement

Password requirements

Password requirements

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment