- Testing menu security - find out if the menu setup
is going to cause problems for users.
- Testing authorities - are object authorities going
to cause problems for certain users? Find the problems
before they happen.
- Find out what menu options are available to a user.
This is often difficult to to determine by looking
at menu setup files because menu setup options can
- Allow a user to access the options of another user
who has become temporarily unavailable, without changing
This product consists of three components that will
allow you to successfully achieve the above.
Command #1: Log on as User
- LOGONUSER -- FREE feature!
The tool is activated from your current session by
entering the command LOGONUSER followed by a user profile
name. After pressing Enter, you will be taken into the
initial program of that user. The user profile, library
list, attention key and authorities will be overridden
to match the new user, and will revert to their previous
settings upon exiting the tool. This command will work
in most situations providing that the job's user name
is not checked. The LOGONUSER command is a Free Feature.
After restoring the product library this command will
work without restrictions.
Command #2: Log on as Virtual
Session - LOGONVT
This tool is activated from your current session by
entering the command LOGONVT followed by a user profile
name. This will start an interactive virtual terminal
session (a new job) as that other user which will be
linked to your current job. This command works better
than LOGONUSER because the job is actually running under
that user. When that session ends you will returned
to your own session.
Command #3: Change Password
Temporarily - CHGPWDTMP
This command CHGPWDTMP will allow you to change a user's
password to something else, allowing you to sign on
as them for real. You can then change the password back
to its previous value (without knowing what it was originally)
with the *UNDO option. This is done without affecting
the password's last change date, so it does not disturb
the expiry interval.
This is useful for two situations: (a) A key user is
away for a few days. You need someone to access their
menu options, but updating menus is troublesome. By
using this function you can change the password, then
later change it back without upsetting the original
user. (b) When there are restrictions placed on the
system that would limit virtual terminal sessions being
started, e.g. there are exit point programs that limit
the number of sessions or require the sessions to linked
to an internal IP address. In this case the LOGONVT
command won't work properly, so you can use this command
[Note: Due to restrictions in the latest operating system,
CHGPWDTMP is not available in V6R1.]
This product contains a number of security features
to guard against it being misused. The main security
feature is that it will not allow you to access user
profiles that have more special authority than you do.
But there are other checks also, depending on the command
being used, and journal records that get written to
the system journal QAUDJRN if security audit journaling
is active. The product also allows the security checks
to be less severe via the option of *HIGH and *LOW security
levels - see the manual for more information.
a Free Trial Version.
Pricing and ordering