The way we handle this goes back a long way before the latest facilities to set NOPASSWORD were available.
What we do is connect all users who are likely to be affected by this (long running servers etc.) to a specific RACF group. We then run a daily procedure in VMUTIL, that is authorised to list that group and issue an ALTUSER RESUME for each user in it. That is all that is needed. The user does not have to be revoked at the time and knowledge of the password is not needed. As we always use LOGONBY for any non-personal userid's, we should probably update our process to use NOPASSWORD, but this method may be useful for userids where you may, occasionally, need to know the password. Colin Allinson Amadeus Data Processing GmbH
