Itschak, The user has CONTROL access to IRR.PASSWORD.RESET
That doesn't help. Gadi -----Original Message----- From: IBM Mainframe Discussion List <IBM-MAIN@LISTSERV.UA.EDU> On Behalf Of Itschak Mugzach Sent: Wednesday, January 12, 2022 12:41 PM To: IBM-MAIN@LISTSERV.UA.EDU Subject: Re: Change password Gadi, allow the user (that enter the command) to facility irr.password.reset *| **Itschak Mugzach | Director | SecuriTeam Software **|** IronSphere Platform* *|* *Information Security Continuous Monitoring for Z/OS, zLinux and IBM I **| * *|* *Email**: i_mugz...@securiteam.co.il **|* *Mob**: +972 522 986404 **|* *Skype**: ItschakMugzach **|* *Web**: www.Securiteam.co.il **|* On Wed, Jan 12, 2022 at 12:28 PM Gadi Ben-Avi <gad...@malam.com> wrote: > Hi, > I would like to allow a user that does not have the special or group > special attribute to issue the following command succefully: > alu uuuu password(xxxx) resume noexpire revoke ( 01/13/22 ) > > Is this possible? > Right now the command fails with > ICH408I USER(OP01 ) GROUP(OPER ) NAME(OPER-01 ) > PARTIAL VIOLATION ON COMMAND ALTUSER > > > We are running z/OS v2.4. > > Gadi > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, send > email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN > ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN Email secured by Check Point ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN