On 10/9/07, Ed Zell <[EMAIL PROTECTED]> wrote: > >> 4) I don't think I like the idea of all system user id's being > >> AUTOONLY/LBYONLY/NOLOG. I think this should be a decision > >> that the person installing the system would make. > >> > > > > Actually that's a decision the SOX auditors caused our clients to > > make, and I now follow. > > > > Ron > > > That is interesting Ron. So far I have not seen an auditor that really > even knows what VM is. They only seems to know about Z/OS and can't > fathom that there is another mainframe operating system. And then I > get to tell them we run VSE too, and that really blows them away! > > Ed Zell > Illinois Mutual Life > (309) 674-8255 x-107
Actually Ed, it was the solution accepted by the auditors when the client asked me for suggestions on how to avoid the expense and learning curve of putting in an ESM. (It really wasn't hard to add 25 logonbys for the system ids and changing their passwords to lbyonly - even using DIRMAINT I managed to muddle through). The client liked not having to spend money and the auditor accepted it for that SOX control (whatever that was - the client faced the SOX auditor, not me). Ron
