When Password History is first enabled, ACF2 already knows what the previous passwords were. How is this possible?

When Password History is first enabled, ACF2 already knows what the previous passwords were. How is this possible?

search cancel

When Password History is first enabled, ACF2 already knows what the previous passwords were. How is this possible?

book

Article ID: 26668

calendar_today

Updated On:

Products

ACF2 ACF2 - DB2 Option ACF2 for zVM ACF2 - z/OS ACF2 - MISC PanApt PanAudit

Issue/Introduction

Question:

When Password History is first enabled, ACF2 already knows what the previous passwords were. How is this possible?

Answer:

When you enable ACF2 password history (PSWDHIST), ACF2 already remembers 4 passwords. How is this possible?

ACF2 maintains the current password and the 3 previous passwords in the logonid record.

Whenever a password is changed, the older passwords are bumped down in the list of previous records. This always happens, even when you are not checking or validating any prior passwords. So, when you first enable password history, ACF2 already knows any previous passwords (up to 3 previous passwords plus the current password).

Environment

Release:
Component: ACF2MS

Resolution

-

Feedback

thumb_up Yes

thumb_down No