Portal | Manuals | References | Downloads | Info | Programs | JCLs | Master the Mainframes
IBM Mainframe Computers Forums Index
 
Register
 
IBM Mainframe Computers Forums Index Mainframe: Search IBM Mainframe Forum: FAQ Memberlist Usergroups Profile Log in to check your private messages Log in
 

 

How do i know till what date my mainframe id will work
Goto page 1, 2  Next
 
Post new topic   Reply to topic    IBMMAINFRAMES.com Support Forums -> TSO/ISPF
View previous topic :: :: View next topic  
Author Message
vinit_infy
Warnings : 1

New User


Joined: 07 Apr 2005
Posts: 56

PostPosted: Mon Jan 29, 2007 3:49 pm    Post subject: How do i know till what date my mainframe id will work
Reply with quote

How do i know till what date my mainframe id will work? I mean do you have any idea to get the accessor id expiration date?

Any suggestion is most appreciated..

Many Thanks.
Vinit

Warning: Title Edited
Back to top
View user's profile Send private message

cpuhawg

Active User


Joined: 14 Jun 2006
Posts: 331
Location: Jacksonville, FL

PostPosted: Mon Jan 29, 2007 7:03 pm    Post subject: Re: How do i know till what date my mainframe id will work
Reply with quote

If your shop uses RACF, you can display your own RACF parameters by entering TSO LU USERID on the command line where USERID is equal to your own ID.

You should get results:

Code:

USER=AB1234  NAME=ANALYST NAME         OWNER=SYSADM    CREATED=04.265 
 DEFAULT-GROUP=SYS1      PASSDATE=07.005  PASS-INTERVAL= 30             
 ATTRIBUTES=NONE                                                     
 REVOKE DATE=NONE   RESUME DATE=NONE                                   
 LAST-ACCESS=07.029/08:15:12                                           


Look at REVOKE DATE. If it is equal to NONE, there is no set expiration date for your ID and it will stay active until the Security administrator removes it. If there is a date there instead of NONE, the date specifies when your ID will become REVOKED.
Back to top
View user's profile Send private message
vinit_infy
Warnings : 1

New User


Joined: 07 Apr 2005
Posts: 56

PostPosted: Tue Jan 30, 2007 7:12 pm    Post subject: Re: How do i know till what date my mainframe id will work
Reply with quote

I dont have the RACF product enabled. Is there any other ways or commands to see the expiration details please?
Back to top
View user's profile Send private message
cpuhawg

Active User


Joined: 14 Jun 2006
Posts: 331
Location: Jacksonville, FL

PostPosted: Tue Jan 30, 2007 7:20 pm    Post subject: Re: How do i know till what date my mainframe id will work
Reply with quote

What is your security product on the mainframe? ACF2, Top Secret, or something else.
Back to top
View user's profile Send private message
vijikesavan

Active User


Joined: 04 Oct 2006
Posts: 118
Location: NJ, USA

PostPosted: Fri Mar 07, 2008 8:58 pm    Post subject: Reply to: How do i know till what date my mainframe id will
Reply with quote

Hi,
I need to know the same information as how long my user id is active.
Then I can renew it accordingly.
The commane TSO LU "userid" didnt work for me. gave error "command LU not found"

We have ACF2 installed.
Can anyone please let me know the command to check?
Thanks,
Viji
Back to top
View user's profile Send private message
expat

Global Moderator


Joined: 14 Mar 2007
Posts: 8593
Location: Back in jolly old England

PostPosted: Sat Mar 08, 2008 1:17 pm    Post subject:
Reply with quote

Ever thought of just emailing your security admin people ?
Back to top
View user's profile Send private message
enrico-sorichetti

Global Moderator


Joined: 14 Mar 2007
Posts: 10202
Location: italy

PostPosted: Sat Mar 08, 2008 7:42 pm    Post subject: Reply to: How do i know till what date my mainframe id will
Reply with quote

it depends on your position within the company...
if You are a full time employee, the userid should not expire

if You are a consultant, usually, Your userid will not expire,
somebody will take care of disabling it at contract end

if You are in a group of contractors then Your contract/project manager should have already given You such info,
together with a document containing Your work/behavior standards and practices


in some cases You might also have been given an internal email address
and personal badge for access control
Back to top
View user's profile Send private message
Agni

New User


Joined: 22 Nov 2007
Posts: 83
Location: Chennai

PostPosted: Sat Mar 08, 2008 9:06 pm    Post subject: Reply to: How do i know till what date my mainframe id will
Reply with quote

Hi cpuhawg,

Can you tell me how to know that which security product is installed in my shop? When I tried the "TSO LU USERID" i got the message as follows:

RACF PRODUCT DISABLED: COMMAND ENDED.
***

Thanks in advance
Agni.
Back to top
View user's profile Send private message
vijikesavan

Active User


Joined: 04 Oct 2006
Posts: 118
Location: NJ, USA

PostPosted: Mon Mar 10, 2008 8:16 pm    Post subject: Reply to: How do i know till what date my mainframe id will
Reply with quote

Thanks for the reply.
I was a consultant and recently got converted to full time employee. So I was not sure whether my TSO userid is changed to "no expiration date"..
Just thought if I can find out before contacting system admin.
If there is no way, then I'll contact them.
Thanks,
Viji
Back to top
View user's profile Send private message
HappySrinu

Active User


Joined: 22 Jan 2008
Posts: 195
Location: India

PostPosted: Wed Mar 19, 2008 5:56 pm    Post subject:
Reply with quote

In Acf you can try with below commands

1.TSO ACF (Mostly every one have access to see their own id's info

2. L <space> userid youwill get some info which has your privileges etc but not sure whether it has your end date of your access.

give a try
Back to top
View user's profile Send private message
Anuj Dhawan

Senior Member


Joined: 22 Apr 2006
Posts: 6258
Location: Mumbai, India

PostPosted: Thu Mar 20, 2008 2:29 am    Post subject:
Reply with quote

Hi,

Quote:
TSO ACF
is it a valid TSO command, doesn't work for me..
Back to top
View user's profile Send private message
sri_mf

Active User


Joined: 31 Aug 2006
Posts: 216
Location: India

PostPosted: Thu Mar 20, 2008 12:38 pm    Post subject:
Reply with quote

HappySrinu wrote:
In Acf you can try with below commands

1.TSO ACF (Mostly every one have access to see their own id's info

2. L <space> userid youwill get some info which has your privileges etc but not sure whether it has your end date of your access.

give a try


Srinu the two commands are not working in my shop.
Back to top
View user's profile Send private message
dick scherrer

Site Director


Joined: 23 Nov 2006
Posts: 19270
Location: Inside the Matrix

PostPosted: Thu Mar 20, 2008 8:10 pm    Post subject:
Reply with quote

Hello,

As was suggested before, talk with the security admin people.

They can tell you which security product is being used, how long your id will "survive" (if it even has an "end date"), and any command you might use to look at your own id (if it is permitted).

One thing that will "time out" is your password and need to be changed periodically.
Back to top
View user's profile Send private message
XOpen

New User


Joined: 19 Mar 2008
Posts: 11
Location: Russia

PostPosted: Mon Mar 24, 2008 8:29 pm    Post subject:
Reply with quote

interested in - why do you need such info ???
Just work and don't think about it. One day you will not be able to logon, will be the right day to ask sec admins - why ?

There are many ways, your userid can be revoked. I beleive, it's not your bussiness to check one of them.

For RACF users, in some systems, you can use sdsf;log to enter LU. It will be executed under operator authority, not your's...
Back to top
View user's profile Send private message
enrico-sorichetti

Global Moderator


Joined: 14 Mar 2007
Posts: 10202
Location: italy

PostPosted: Mon Mar 24, 2008 8:58 pm    Post subject: Reply to: How do i know till what date my mainframe id will
Reply with quote

Quote:
For RACF users, in some systems, you can use sdsf;log to enter LU. It will be executed under operator authority, not your's...


NO !
any command will be executed under the authorization of TSO user

BUT if things have been properly setup the
LU command will be available to list each user attributes regardless of the racf attributes ( tested )
Back to top
View user's profile Send private message
XOpen

New User


Joined: 19 Mar 2008
Posts: 11
Location: Russia

PostPosted: Mon Mar 24, 2008 9:40 pm    Post subject:
Reply with quote

I mean:

/D O

Code:
 IEE603I 12.01.39 OPDATA DISPLAY 654                           
  PREFIX     OWNER      SYSTEM     SCOPE     REMOVE   FAILDSP   
  $          JES2       E07        SYSTEM    NO       SYSPURGE 
  %         RACF      E07        SYSTEM    NO       PURGE     


you can execute /%LISTUSER userid

Any SDSF;LOG command is issued as it was entered from system console. So it will be executed with default authority(in most cases under IBMUSER)

Sure you can protect which command user are allowed to enter in console.
Back to top
View user's profile Send private message
enrico-sorichetti

Global Moderator


Joined: 14 Mar 2007
Posts: 10202
Location: italy

PostPosted: Mon Mar 24, 2008 9:56 pm    Post subject: Reply to: How do i know till what date my mainframe id will
Reply with quote

Quote:
you can execute /%LISTUSER userid


when ( from any sdsf panel ) typing something prefixed with the "/" ,
the typed string will be considered a console command and it will be processed as such

typing /%LISTUSER will result in the error message

IEE305I %LISTUSE COMMAND INVALID
Back to top
View user's profile Send private message
XOpen

New User


Joined: 19 Mar 2008
Posts: 11
Location: Russia

PostPosted: Mon Mar 24, 2008 9:56 pm    Post subject:
Reply with quote

Hm.. I might be wrong, sorry, can't test in my current environment...
Back to top
View user's profile Send private message
XOpen

New User


Joined: 19 Mar 2008
Posts: 11
Location: Russia

PostPosted: Mon Mar 24, 2008 10:01 pm    Post subject:
Reply with quote

No, no...
I mean, it can be possible that it checks my userid authority, but I do enter RACF commands via console.

Please refer to
4.0 Chapter 4. RACF operator commands
in
Security Server RACF
Command Language Reference
Back to top
View user's profile Send private message
XOpen

New User


Joined: 19 Mar 2008
Posts: 11
Location: Russia

PostPosted: Mon Mar 24, 2008 10:11 pm    Post subject:
Reply with quote

I did it:

Code:
0210  D O                                     
0010  IEE603I 12.01.39 OPDATA DISPLAY 654     
0010   PREFIX     OWNER      SYSTEM     SCOPE
0010   $          JES2       E07        SYSTEM
0010   %SYSNAME   RACF       E07        SYSTEM


Output:
Code:
0210  %SYSNAMELISTUSER SPOSPEL                                               
0010  IRRA011I (%SYSNAME) OUTPUT FROM LISTUSER: 768                         
0010  USER=SPOSPEL  NAME=SERGEY POSPELOV       OWNER=QA        CREATED=07.220
0010   DEFAULT-GROUP=QA        PASSDATE=07.221  PASS-INTERVAL=N/A           
0010   ATTRIBUTES=NONE                                                       
0010   REVOKE DATE=NONE   RESUME DATE=NONE                                   
0010   LAST-ACCESS=08.084/12:34:50                                           
     


Code:
0210  %SYSNAMELISTUSER IYASCHU                         
0010  IRRA011I (%SYSNAME) OUTPUT FROM LISTUSER: 781   
0010  ICH30002I NOT AUTHORIZED TO LIST IYASCHU           


I don't have SPECIAL, so can't check which userid caused a reject. (my or default)
Back to top
View user's profile Send private message
View previous topic :: :: View next topic  
Post new topic   Reply to topic    IBMMAINFRAMES.com Support Forums -> TSO/ISPF All times are GMT + 6 Hours
Goto page 1, 2  Next
Page 1 of 2

 

Search our Forum:

Similar Topics
Topic Author Forum Replies Posted
This topic is locked: you cannot edit posts or make replies. Urgent Mainframe Requirments (2-10 yr... Shankar779 Mainframe Jobs 0 Sun Nov 27, 2016 1:48 pm
No new posts TOT & DATE parameter in ICEMAN hemanthj642 DFSORT/ICETOOL 4 Mon Nov 14, 2016 5:19 am
This topic is locked: you cannot edit posts or make replies. How to pass the previous month date i... Suganya87 DFSORT/ICETOOL 5 Mon Oct 31, 2016 4:13 pm
This topic is locked: you cannot edit posts or make replies. Mainframe Developer requirement in Ku... capricorn Mainframe Jobs 0 Sun Oct 23, 2016 3:49 pm
This topic is locked: you cannot edit posts or make replies. Get correct date and time when curren... balaji81_k DB2 24 Fri Oct 14, 2016 10:40 pm


Facebook
Back to Top
 
Mainframe Wiki | Forum Rules | Bookmarks | Subscriptions | FAQ | Tutorials | Contact Us