How to identify users with no password(NOPW) in Top Secret

book

Article ID: 33687

calendar_today

Updated On:

Products

CA Top Secret CA Top Secret - LDAP

Issue/Introduction

Is there a way to identify acids that have NOPW? 

Environment

Release: TOPSEC00200-16-Top Secret-Security
Component:

Resolution

To identify all acids without a password, the MSCA can issue the following TSS command:

TSS LIST(ACIDS) DATA(PASSWORD)
NOTE**The above command should be run in off hours because it is I/O intensive.

To identify a specific acid without a password, the MSCA can issue the following TSS command:

TSS LIST(acid#) DATA(PASSWORD)

Where acid# is the acid to be listed.

The list will show *NOPW* as password, indicating that the acid doesn't have a password.

When the password is blanked out, it means that the acid has a true password.

Example #1: 
 
    TSS LIST(CTS310A) DATA(PASSWORD) will show:
                      
    ACCESSORID = CTS310A   NAME       = CTS 310 REGION ACID
    PASSWORD   = *NOPW*                                    
                                                       
    TSS0300I  LIST  FUNCTION SUCCESSFUL
 
    The *NOPW* indicates that the acid does not have a password.
 
 
Example #2:
 
TSS LIST(ACID#) DATA(PASSWORD)
                   
ACCESSORID = ACID#      NAME       = ACID NAME
PASSWORD   =
 
TSS0300I  LIST     FUNCTION SUCCESSFUL
 
The blanked out password indicates the the acid has a password.