Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Dealers Business System on AS/400

Status
Not open for further replies.
BeatrixKiddo

BeatrixKiddo

ISP
Feb 22, 2009
60
MX
Is there anyone with experience on AS/400, especificaly an aplication called DBS?
 
Sort by date Sort by votes
AS/400, yes...DBS, no. I've used Global's software, so I might be somewhat familiar with the processes.

Did you have a question?

Mark
 
Upvote 0 Downvote
What kind of report should I ask for or where do I need to look to know which users at OS level has superuser administrative rights?
 
Upvote 0 Downvote
my guess would be that the software users the IBM security, but could also be like the old JD Edwards World software,, which adds security with in its database configuration. Are you asking "how to sign the AS400",, or how to sign on the DBS.
 
Upvote 0 Downvote
The AS400 user that has those rights is the built-in QSECOFR user. There could be other users that have the same rights but QSECOFR is built-in. If you don't know what the passwords are, the only thing I know to do is to contact IBM. They can send someone to reset the QSECOFR password. There may be other ways.

Some machines have never had their QSECOFR password changed which is really stupid. The default password for QSECOFR is QSECOFR.

 
Upvote 0 Downvote
Ok, got it, but how can I see the privilages or rolls of other accounts?
(I'm not the administrator, I'm doing a kind of small auditory on the systems)
 
Upvote 0 Downvote
you have to be able to query the file, and print it,, which means you have to know IBM query or get the system administrator to do it for you.. Depending on the level of security established on the AS400,, it could go a deep as what file they are able to use. If the admin has established "roles",, for them they should be able to tell you that.
 
Upvote 0 Downvote
i never used SECTOOLS but if you have access to that you should be able to run the DSPUSRPRF command.

The command, DSPUSRPRF, has the info regarding the authorities of a user. Type it on a command line.

SECTOOLS may be more useful to you, though. option 9, print profile internals looks interesting.
 
Upvote 0 Downvote
I need to know which other accounts could have the access rigths of QSECOFR or at lest *ALLOBJ and/or *SECADM.
 
Upvote 0 Downvote
Use the DSPUSRPRF command as follows:

Code: 
DSPUSRPRF USRPRF(*ALL) TYPE(*BASIC) OUTPUT(*OUTFILE) OUTFILE(library/file)

That will create a file that can be queried. A field in the file lists the special authorities the profile can have. The field is UPSPAU. It is 150 bytes.
The field can have multiple values.

You can query like this:

Code: 
SELECT UPUPRF, UPSPAU FROM DSPUSRPRF
WHERE UPSPAU LIKE '%*ALLOBJ%'
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Manu_
  • Locked
  • Question
IBM x3650 M3 power on failure
Replies
0
Views
192
Manu_
Manu_
Kiran Angara
  • Locked
  • Question
Hyper-V Internal Network Ping Issue On WS2019
Replies
0
Views
131
Kiran Angara
Kiran Angara
amandeepgautam
  • Locked
  • Question
How to mount a ufs (on solaris 10) on solaris 11
Replies
0
Views
81
amandeepgautam
amandeepgautam
aziyard
  • Locked
  • Question
iam on IBM power 7 server. i cance
Replies
0
Views
73
aziyard
aziyard
BULOS
  • Locked
  • Question
RECONFIGURATION DE RAID 5 POUR POSITIONNER LE DISQUE DUR SYSTEME DONT LA POSITION A ETE CHANGEE
Replies
0
Views
88
BULOS
BULOS

Part and Inventory Search

Sponsor

Back
Top