User profile

[Guest.Visitor]

We have a user profile that was disabled and do not know who did it. Does anyone know a way to find this out after it has been enabled? If not now, is there something we can do in the future. We can not lock down security tight enough to stop the wrong people from having access.

[Guest.Visitor]

You may be able to look at the logs (DSPLOG) to see when and maybe why it has been disabled, although the only way I can think of other than to manually change the user profile to *disabled would be to key the password in wrong to many times if the system is configured to do that(System value - QMAXSGNACN *SEC Action to take for failed signon attempts ). You can setup the security audit journal to track all types of violations. I would suggest it if you think you have any type of security problems.

[Guest.Visitor]

The DSPUSRPRF command will show you how many invalid Sign-on attempts there were. Then if you want to know from what device these sign-on were attempted, just check out the DSPLOG MSGID(CPF2234). It will list all the failed attempts in your available history... Hope this helps, Isabelle

[David Abramowitz]

A user profile is an object like any other. Subsequently additional security can be placed on the object via the EDTOBJAUT command. Something like EDTOBJAUT prfname *USRPRF, where prfname is the name of the user profile. By placing a PUBLIC *EXCLUDE lock on this, you can then grant appropriate authority only to those who need it. Dave