Can list NOPW users without MSCA authority in CA Top Secret 16.0?
Article ID: 186760
Although MSCA can list passwords of users who have NOPW, but is this feature still invalid for SCAs in CA Top Secret 16.0?
This an enhancement to CA Top Secret 16.0 by applied SO10461 and SO10967.
Authorized central security control ACID (SCAs) can now list users that possess NOPW. To perform the listing, the SCA must have USE access to TSSCMD.USER.LIST.NOPW in the CASECAUT resource class.
TSS PERMIT(sca acid) CASECAUT(TSSCMD.USER.LIST.NOPW) ACCESS(USE)
In listed output, the PASSWORD field displays a value (*NOPW*) only when a user is defined with NOPW. If the user has a password defined, the PASSWORD field is blank.