ACF2 user logon - password revalidation or reverify

book

Article ID: 143281

calendar_today

Updated On:

Products

CA ACF2 CA ACF2 - DB2 Option CA ACF2 for zVM CA ACF2 - z/OS CA ACF2 - MISC

Issue/Introduction

User gets a password re validation error logging onto CICS.  How to fix/prevent?

Environment

Release : 16.0

Component : CA ACF2 for z/OS

Resolution

Using Password Verification
The CICS interface provides password verification in the following environments:
• During sign-on
• When VERIFY is Specified on a Resource Rule
• During Application Program Interface (API) Calls
• When Idle Time has Expired

Detailed information is provided in the following sections.


During Sign-on
During a CICS sign-on, the CICS interface validates a user's logonid and password to ensure that the user signing on is
authorized to use the logonid. System access is not granted unless the password is correct.
When VERIFY is Specified on a Resource Rule
The VERIFY parameter on a resource rule ensures that the user who signed on to the system is the person making the
request. If a user attempts access to a resource protected by a rule with VERIFY specified and the system initialization
parameter VERIFY RULE=YES is set, the CICS interface prompts the terminal operator for a password without identifying
the logonid associated to the terminal.


During Application Program Interface (API) Calls
The UCV (User Call Verify) request provides the ability to prompt for a different logonid than the one associated to the
terminal. Also, if the password is not supplied, the CICS interface prompts for it. For more information about this request,
see Application Program Interface.


When Idle Time has Expired
If the system initialization parameter VERIFY IDLE=YES is specified and the nondefault logonid associated to the terminal
has a nonzero idle time specified, CA ACF2 prompts for the terminal operator's password if idle time elapses