On Apr 19, 4:39pm Vince Allio said:
>>How do other sites notify their users that their ADSM passwords are abou
>>to expire ? We have found that when a user has their pc scheduled to
>>back up, if they do not change their password on time then the scheduled
>>backups will begin to fail because the password is incorrect. Do we just
>>have extra-sloppy users because they aren't responsible enough to monito
>>this on their own & we have to remind them to change their password ?
At this point we don't expect to notify the users, we've set the
expiration date to 9999, so it shouldn't be an issue. Our users have
*more important* things to do than regularly change their password (on
several computers with dissimilar OS's, with incompatible security
systems, I might add).
>Kind of off the question but,
>
>Since ADSM allows the user to reuse the same password when the old
>one expires (not nice) we can't think of a good reason to have it
>expire.
>
>We'd like to see ADSM let us customize the requirements for
>nodeid/password. Things like:
>
> o Password must be at least <n> characters
> o Nodeid must be at least <n> characters
> o New password must not be one of the last <n> passwords used
> o New password cannot be certain words
>
> ... you get the idea.
I'd like to see exits for an External Security Manager (ESM). This is
possible for MVS, VM, UNIX(copyright,tm,reg. US pat.,sm,etc.), but I'm
not an OS/2 user, so I don't know if it could be done there, still
providing an exit would let you code the call to, say, NYS or RACF or
VM:SECURE, etc. The *last* thing my users need is another password to
forget/mis-type/write on a "post-it" (apologies to 3M)/business card.
--
Mark A. Stevens Phone: 708-235-2204
Mark A. Stevens Phone: 708-235-2204
Systems Programmer Internet: xmas AT uxa.ecn.bgu DOT edu
Educational Computing Network BITNET: [email protected]
Board of Governors Universities VMSHARE: ECE/MARK
|