On 9 Mar 2008 14:39:28 -0700, in bit.listserv.ibm-main
(Message-ID:<[EMAIL PROTECTED]>)
[EMAIL PROTECTED] (Wolfgang Schäfer) wrote:
I tried to run the ´sample´ IBM password copy utility
(PWDCOPY on the IBM RACF website) on z/OS 1.7 and
z/OS 1.8. The tool runs without errors, but the copied
password could
not be used.
<snip>
In my case, userids are going to be renamed. Since this
will be done using ´big bang´ it´s not a good idea to give
everyone a new password, transporting the old password
would be a great help.
I´ld really like to use something ´proven´ before I start
to twiddle around with RACROUTE EXTRACT requests :-)
1. Are both databases set to use the same encryption
technique?
2. My reading of the documentation of the DES encryption is
that the password is used as a key to encrypt the userid,
and that is the value stored. Obviously, the same password
will not encrypt a different userid to the same stored
value. If my reading and memory are right, you can't take
the password field from one userid and successfully use it
for a different userid.
3. RACROUTE EXTRACT to read and write encrypted passwords
isn't that difficult. I had written programs to do just
that before PWDCOPY was available.
--
I cannot receive mail at the address this was sent from.
To reply directly, send to ar23hur "at" intergate "dot" com
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
