how to change the JDE's password?

how to change the JDE\'s password?

hi,list,
we use as/400 for our enterprise server.
i know that when oneworld communicate with AS/400,it
use a 'system user',which the default is JDE.
and the JDE 's password is JDE,too.and the JDE user has Qsecurity Class, can fully control the AS400.
so the password of it should be changed.
because Oneworld user use it,the Oneworld users security should be change too.
i have had changed the password for once.my method is:
change the JDE's password, and recreate all the users security using P98owsec.
but this has a obvirous shortage:all the users own password has to be changed to a new one by me(for i don't know there password).i don't think i should do that .
i think the oneworld must have provide a easier way ,but i don't know.
who can help?

bee

RE: how to change the JDE\'s password?

Bee
I would suggest creating several AS400 userprofiles and enrolling them as
OneWorld system users. I have one for each country.
I'm not sure but I think you can add a system user globally using P98OWSEC
Form Exits> Add Data Source and then checking the All User Checkbox.
Lastly there are several documents on the Knowledge Garden to help, e.g.
oti-01-0010-1. If you are using RUNUBE then you'll have to change the
password for each use.
Regards
Robert Fletcher

XE SP18.1
AS400 V4R5

Re: how to change the JDE\'s password?

Bee

We just did this. You shouldn't have to change the OW password if you are changing the system password in the F98OWSEC file. We did have to do it one user at a time which was a bummer.

Patty

Re: how to change the JDE\'s password?

bee,

I note that you are running B7332. The behavior of P98OWSEC you describe is what we found when we were running B7331. However, after we upgraded to B7333 (XE), I believe that JDE had fixed this nasty bug/behavior, so we don't have to recreate end-user's accounts. We just change the password used internally to access the database, not the end-user's own password.

So maybe this bug was still there in B7332. I'm glad it's been fixed under XE, which unfortunately won't help you right now.

Re: how to change the JDE\'s password?

Hi Bee,

Are you using JDE as the Security user for all of the user ID's you create?
In the short term that seems to be the easiest way but you can not track
who is doing what on the AS/400 nor can you figure out easily who is in
what env. I create a "Ghost" user profile for each OneWorld user so that
when they log on they log in to OW as User1 and then OW security logs them
into the AS/400 as J_User1 using some obscure password that noone can
guess. that way everyone has their own log on to the AS/400, I can track
who is in what env and the end user never knows the profile and password
that access the AS/400 data. If the end user found that out then there
would be a large ODBC security hole in the infrastructure.

As for changing the JDE password... There are many places that you have to
change it. In order for it to coordinate everywhere I change it as
follows:

- The Deployment Server NT/2000 user (or domain user if that's what you
use)
- The AS/400 User Profile
- The OneWorld User Profile
- The One World User Security area (JDE profile and anyone else using JDE
as their profile)
- The Enterprise JDE.INI file
- Bounce the services (ENDNET, CLRIPC, STRNET)
- Run PORTTEST to verify the new password

Regards,
Gerald.

Re: how to change the JDE\'s password?

hi,
thank u for ur helps,this is really helpful to me.
Dsauve said that B7331 is like what i described, and b7333 have fix it.
i'm B7332,maybe i'm lucky to find it fixed?and SULLY1 said i don't need change the user's password.this encourage to check the program again.and finally i find the 'add datasource' in the screen exit bar.i think this will solve the problem.
and Robert and kastanek, i really learn something from your reply.
thank u again

Regards.

bee

Re: how to change the JDE\'s password?

bee,

I have never used the 'jde' default id at all (except on installs &
upgrades). I use a different name with all authority for the CNC group. I
have other profiles set up on the AS400 depending upon the group so that
they will send jobs to different job queues. This way I control all AS400
user ids and passwords. It works great. I never have to change them at
all. I add more as I put more systems on line and give them different job
queues and sometimes set up new subsystems so they won't contend with each
other's jobs.... Then when I change the CNC password I don't have to deal
with anyone else.

There is a job out there that will change all ES passwords at once. I
think it can be used by group also. Perhaps someone can guide you there.
It's probably listed on the KG.

Good luck!




we use as/400 for our enterprise server.
i know that when oneworld communicate with AS/400,it
use a 'system user',which the default is JDE.
and the JDE 's password is JDE,too.and the JDE user has Qsecurity Class,
can fully control the AS400.
so the password of it should be changed.
because Oneworld user use it,the Oneworld users security should be change
too.
i have had changed the password for once.my method is:
change the JDE's password, and recreate all the users security using
P98owsec.
but this has a obvirous shortage:all the users own password has to be
changed to a new one by me(for i don't know there password).i don't think i
should do that .
i think the oneworld must have provide a easier way ,but i don't know.
who can help?

bee




Lori
OW Xe SP19 Update 5
AS400 V5R1 NT
Citrix
email: [email protected]

Re: how to change the JDE\'s password?

Hi,

Pick the group as a user in Security Menu option. Select default and then Revise security, you can change the system password to the new one. Alongside that option you'll see a check box that says "All users". This will make the change to all users without you, having to change all the individual users password.

Pardon me for I am yet to get used to the "Application name" convention P***** whatever. Let me know if you need any other info.

Re: how to change the JDE\'s password?

kastanek: We thought about going that route, but that meant that for every One World user, we would also have to create an AS400 user profile. We took it one step "down". We create an AS400 profile for each One World user group. Yes, we cannot track every single individual's actions, but we felt that was better than the double effort required for creating user profiles.

Re: how to change the JDE\'s password?

To change all users' System User/Password at once:

P98OWSEC

To make System User/System Password changes to all users, select Add Datasource from the
exit bar and check All Users on the next form. Leave datasource blank to indicate all
datasources and enter new system user/password.

Re: how to change the JDE\'s password?

Tgore,

You actually CAN track every users actions. Their id goes into the records
they update in the AS400, not the AS400 user id... I too was going to set
up separate AS400 id's until I found this out. I also use groups & set them
to go to different job queues/subsystems. I like knowing I can tell which
user updated what file...

Lori






Lori
OW Xe SP19 Update 5
AS400 V5R1 NT
Citrix
email: [email protected]

RE: how to change the JDE\'s password?

When the business data records are created the USER ID and the machine ID
goes into each business data related record. However, this information gets
changed by the next process in the record's workflow. Example: A sales
order header record's (F4201) User ID and machine ID will be overwritten by
the user and machine ID who takes the next action (e.g. print pick slip)
against this record. Therefore, you really cannot rely on these fields to
show you what exactly transpired since it keeps changing, other than knowing
who took the last action.



Regards,
Tony Aldemi