yes. Any readiness review we perform check this. ITschak
On Tue, Jan 21, 2020 at 9:06 AM Brian Westerman < [email protected]> wrote: > I have several sites using it. The way it works is that the user enters > the logon command or logon userid and instead of getting the entire full > screen, it just gets the prompt for the password. If the password is > incorrect, (or if they entered a bad userid to begin with) they get a > message that EITHER the userid or the password is incorrect and (if it was > a valid ID) the attempts at password is upped by one. > > The good side is that the nefarious person trying to get on doesn't know > if the userid or the password were bad, just that one of them was. The bad > side of this is that it only supports 7 character ID's (or at least it used > to). We don't have anyone at 2.3 or 2.4 (or any older ones with the 8 > character apars added) that is using it so I can't tell for sure if it > works with the 8 character ID's > > All this really did (I think) is change the location of the call to the > full screen information screen, so you would think it should work with 8 > character ID's, but I don't know for sure. > > Brian > > On Mon, 20 Jan 2020 16:31:22 -0600, Tom Marchant <[email protected]> > wrote: > > >On Mon, 20 Jan 2020 15:44:11 -0600, Paul Gilmartin wrote: > > > >>On Mon, 20 Jan 2020 15:17:00 -0600, Lionel B. Dyck wrote: > >> > >>>Is anyone using this feature > https://www-01.ibm.com/support/docview.wss?uid=isg1OA44855 > > > >We do. > > > >>> > >>Which says: > >>**************************************************************** > >>* PROBLEM DESCRIPTION: This support provides the ability * > >>* to inhibit all user information prior * > >>* to the successful input of a valid * > >>* password. * > >>**************************************************************** > >>That's ambiguous, or at least unclear. > > > >Not if you read the whole APAR. > > > >>Does it report invalid user ID before > >>prompting for password? > > > >No, it does not. After entering an invalid userid, it prompts for a > password. Then it issues > >IKJ56474I USERID OR PASSWORD IS INCORRECT OR NOT AUTHORIZED > > > >As documented more than once in the APAR text. For example: > > > ><quote> > >| o If your installation has PasswordPreprompt active > >| there will be a line mode prompt for password and if either > >| User ID and password are incorrect the system responds with > >| message Userid or Password not authorized and terminates. > ></quote> > > > >-- > >Tom Marchant > > > >---------------------------------------------------------------------- > >For IBM-MAIN subscribe / signoff / archive access instructions, > >send email to [email protected] with the message: INFO IBM-MAIN > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to [email protected] with the message: INFO IBM-MAIN > -- ITschak Mugzach *|** IronSphere Platform* *|* *Information Security Contiguous Monitoring for Legacy **| * ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
