Here are some options to get the MSCA's password reset:             
                                                                    
** An SCA with the following can reset the MSCA password by issuing TSS REPL(msca) PASS(xxxx):                                          

1) ACID(MAINTAIN) or MISC8(PWMAINT) admin authority
              
AND 

2) TSS PER(scaacid) CASECAUT(TSSCMD.USER.REPLACE.MSCAPW) ACCESS(UPDATE)

An SCA needs update access to TSSCMD.USER.REPLACE.MSCAPW in the CASECAUT resource class in order to change the MSCA's password. 

TSS ADD(dept) CASECAUT(TSSCMD.)   (if not already done)
TSS PER(scaacid) CASECAUT(TSSCMD.USER.REPLACE.MSCAPW) ACC(UPDATE)
TSS REFRESH(scaacid) JOBNAME(*) 

** Another option is an SCA with ACID(XAUTH) can issue:
 
TSS PER(sca) ACID(msca) 

so the 'sca' acid can submit batch jobs with USER=msca. Then the SCA can run a batch TMP job (IKJEFT01) with USER=msca and in that job, issue:

TSS REPL(msca) PASS(xxxx)                                                  
                                                                           
After doing this, revoke the permit via:

TSS REV(sca) ACID(msca)
 
** If neither of the above can be done:
1) Allocate new security files (BDAM and VSAM) with MSCA and password.
2) Recycle TSS (temporary shutdown and restart) pointing to the new security files. (An IPL is not necessary to pick up a new security file.)
3) Signon as the MSCA. 
4) Stay signed on as the MSCA and do another temporary shutdown and restart of TSS pointing to the old security file. 
5) Do a TSS REPLACE command to replace the old MSCA password.