Changes or queries the current status of the user’s password.
To change the user’s password, use this syntax: sp_password old_password, new_password, [login_name]
To query the current status of the user’s password, use this syntax: sp_password
is the current password for the user of this procedure or login name.
is the new password for the user. The new password must conform to the rules required on the DBMS in which the password change is to take effect.
is the login name of the user whose password is to be changed.
The mainframe security system rejects the request if
the user lacks the authority to change another user’s password.
You can program your client applications to use sp_password to avoid password expiration problems. Program an application to issue sp_password upon application start-up, and prompt the user for a new password if the existing password is close to expiration. Also, you can build a simple application that reads user IDs and passwords from a file and executes sp_password to make the appropriate modifications.
For DB2 UDB, the DB2 access service invokes the CICS transaction called Password Expiration Manager (PEM). PEM is a password management program that IBM provides with CICS 3.3 through an optional PTF UN90057. PEM is available only for connections to the mainframe using LU 6.2; it is not available for TCP/IP connections.
To change the setting of the CICS SIT table property,
ask the CICS system programmer and the external security manager.
The SIT property defines the intersystem refresh delay, which determines
how long users remain signed on to the host when running transactions
with the InterSystem Communication
(ISC) setting. Its setting can affect the ability of users to log
in more than once or to run multiple host transactions from TRS
within the defined time period. By default, the delay is set to
30 minutes. Sybase recommends setting ISRDELAY=0.
Table 12-5 shows the result set:
Column |
Datatype |
Possible return values and descriptions |
|---|---|---|
RETURN_CODE |
smallint |
0 = The PEM operation returned no errors. 1 = The user ID was not found on the host. 2 = The password is incorrect. 3 = No new password was specified and the old password expired. 4 = The host security system rejected the new password. 5 = A security function failure occurred. Your password account may be revoked. 6 = An invalid request was made to PEM. The new or old password may be in an unacceptable format. 7 = General security error. 8 = Password change completed but signon failed. |
CURRENT_DATE |
datetime |
Date and time of current successful signon. |
LAST_DATE |
datetime |
Date and time of last successful signon. |
EXPIRE_DATE |
datetime |
Date and time password will expire. |
REVOKE_COUNT |
smallint |
Number of unsuccessful signon attempts since the last successful signon with this user ID. |
