David,
You didn't say anything about the userid that they're trying to log on
to. If all they need are some privileges that you don't want to grant
to their personal userids, can you have two, with eight LOGONBY users on
each, e.g. MAINT1 and MAINT2? Obviously, that won't work for some
things. Assuming spending money on RACF, VM:Secure, or even DIRMAINT is
out, the other option is to give up on LOGONBY, and store the password
somewhere where they can all find it. A minidisk that's directory
linked to their personal userids would be best. They can log on to
their own userid, look up the password, then log on to the target
userid. If security policies prevent password sharing, the client will
have to decide if the policy is important enough to warrant spending
money to comply with it.
Dennis
"Until and unless you discover that money is the root of all good, you
ask for your own destruction. When money ceases to be the tool by which
men deal with one another, then men become the tools of men. Blood,
whips and guns - or dollars. Take your choice - there is no other - and
your time is running out." -- Ayn Rand
________________________________
From: The IBM z/VM Operating System [mailto:[EMAIL PROTECTED] On
Behalf Of David Kreuter
Sent: Monday, November 24, 2008 16:59
To: [email protected]
Subject: [IBMVM] LOGONBY - limit of 8 userids.
The LOGONBY statement in the directory is limited to 8 users. I have a
client that wants to have, say, 16 in the list.
The system is fairly knuckle scraping, i.e., no RACF, DIRMAINT,
products, etc. This isn't helping, as if DIRMAINT was there we could do
a dynamic directory update.
I have thought of a command exit, or even a class C or E service machine
that zaps storage. But I'm too old for zapping storage ...
... at least in production systems.
Any ideas?
Thanks.
David Kreuter
