HPlogo   HP 3000 Computer Systems: MPE/iX Architected Interface Facility:
Operating System Reference Manual > Chapter 3 Architected Interface Descriptions

3.3 AIFACCTGET / PUT Items

MPE documents

Complete PDF

 

Table of Contents

Index

 

⇓ Page Bottom

Item Descriptions
User Items
Group Items
Account Items

⇑ Page Top

  

3.2 AIFACCTPUT

3.4 AIFCHANGELOGON

The following tables provide detailed descriptions of the item numbers associated with User, Group, and Account Accounting Information.

Table 3-2 User Item Descriptions

Item Number Item Name (Data Type) Get; Put; Verify; Release First Available Description
6001 User name (CA16) Put: No; Verify: Yes; Release 3.0

Returns the user name (left-justified and padded with blanks).
6002 User Password (CA16) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the password of the specified user.

The HP 3000 Security Monitor/iX Product available on Release 5.0 provides password encryption. With password encryption turned on, a new password is automatically encrypted before it is stored in the system directory. The encryption facility works one way. Even if you know the encryption algorithm, you cannot reconstruct a password in plain language from its encrypted version. Therefore, encrypted passwords are NOT returned in this item; instead the text "*ENCRYPTED*" is returned. See item 6025.
6003 User Capabilities (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the capability mask for this user. The item is a bitmap and, if the bit is set to 1, the user owns the corresponding capability. The user capabilities cannot be greater than the corresponding account capabilities.
    Bit (0:1)SM
    Bit (1:1)AM
    Bit (2:1)AL
    Bit (3:1)GL
    Bit (4:1)DI
    Bit (5:1)OP
    Bit (6:1)CV
    Bit (7:1)UV
    Bit (8:1)LG
    Bit (9:1)SP
    Bit (10:1)PS
    Bit (11:1)NA
    Bit (12:1)NM
    Bit (13:1)CS
    Bit (14:1)ND
    Bit (15:1)SF
    Bits (16:7)Unused (set to 0)
    Bit (23:1)BA
    Bit (24:1)IA
    Bit (25:1)PM
    Bits (26:2)Unused (set to 0)
    Bit (28:1)MR
    Bit (29:1)Unused (set to 0)
    Bit (30:1)DS
    Bit (31:1)PH
6004 Maximum priority (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the priority that is the maximum allowed for the user. The maximum priority for a user is specified by using the MAXPRI parameter of the NEWUSER and ALTUSER commands. The values and their associated queues are listed below:
    100 BS queue
    150 CS queue
    200 DS queue
    250 ES queue
6005 User Logon count (I32) Put: No; Verify: Yes; Release 3.0

Returns the number of jobs and/or sessions open for this user.
6006 User Home group (CA16) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the name of the home group of this user (left-justified and padded with blanks).
6007 User UDC Index (I32) Put: No; Verify: Yes; Release 5.0

The offset into COMMAND.PUB.SYS for user UDCs. COMMAND.PUB.SYS reflects the UDC environment that takes effect the next time the user logs on.
6008 User Local attributes (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the user definable attributes of this user.
6009 User Password validation (CA16) Put: No; Verify: No; Release 3.0

Passes a user password. The corresponding status in the itemstatus_array will contain an error and the overall_status an index if the actual user password does not match the specified user password.
6010 Home directory (REC) Put: No; Verify: Yes; Release 4.5

Returns the home directory associated with this user. The directory is in the format of an HFS pathname (for example, /SYS/PUB).

Record type: pathname_type (Refer to appendix B.)
6011 UID (I32) Put: No; Verify: Yes; Release 4.5

Returns the user ID associated with this user. The user ID (UID) provides file owner class security for MPE/iX. The UID is added to the user database, HPUID.PUB.SYS, when a new user is created with the NEWUSER command.
6012 Initial Logon Program (REC) Put: No; Verify: Yes; Release 4.5

Returns the initial logon program for this user. The program will be represented as an HFS pathname (for example, /SYS/PUB/CI).

Record type: pathname_type (Refer to appendix B.)
6013 Encrypted? (B) Put: No; Verify: Yes; Release 5.0

Returns true if the user password is encrypted and false when the user password is plain text. The encryption feature is enabled in the Global Security Options Menu of the HP Security Monitor. For more information see the MPE/iX Security Features System Manager's Guide.
6014 User Password Required? (B) Put: No; Verify: Yes; Release 5.0

Returns true if the user password is required and false when it is not. The required password is set via the USERPASS=REQ option on the NEWACCT and ALTACCT commands when the HP Security Monitor is installed. For more information see the MPE/iX Security Features System Manager's Guide.
6015 User Password Warning? (B) Put: No; Verify: Yes; Release 5.0

Returns true if the user password warning is in effect and false when it is not. During the password warning period, the logon user is notified of the pending password expiration. This feature is enabled by the HP Security Monitor. For more information see the MPE/iX Security Features System Manager's Guide.
6016 User Password Expired? (B) Put: No; Verify: Yes; Release 5.0

Returns true if the user password is expired and false when it is not. This is a feature of the HP Security Monitor. For more information see the MPE/iX Security Features System Manager's Guide.
6017 User Password Invalid? (B) Put: No; Verify: Yes; Release 5.0

Returns true if the user password is invalid and false when it is not. An invalid user password is one which has exceeded the maximum lifetime or expiration period. This is a feature of the HP Security Monitor. For more information see the MPE/iX Security Features System Manager's Guide.
6018 User Name Invalid? (B) Put: No; Verify: Yes; Release 5.0

Returns true if the user name (ID) is invalid. A user name becomes invalid when the invalid user logon count has been exceeded. This is a feature of the HP Security Monitor. For more information see the MPE/iX Security Features System Manager's Guide.
6019 Invalid User Logon Count (I32) Put: No; Verify: Yes; Release 5.0

Returns the number of invalid logon attempts for a user name. This is a feature of the HP Security Monitor. For more information see the MPE/iX Security Features System Manager's Guide.
6020 User Password Aging Start Date (U32) Put: No; Verify: Yes; Release 5.0

Returns the start date of the password aging cycle. Password aging is enforced only on REQUIRED user passwords. This value is used only when item 6022 (maximum days) is greater than zero. The bits and their meanings are as follows:
    Bits (0:16) Unused
    Bits (16:7) The year of the century
    Bits (23:9) The day of the year
This is a feature of the HP Security Monitor. For more information see the MPE/iX Security Features System Manager's Guide.
6021 User Password Aging Minimum Days (I32) Put: No; Verify: Yes; Release 5.0

Returns the minimum period in days a new or changed user password cannot be altered. Password aging is enforced only on REQUIRED user passwords. This value is used only when item 6022 (maximum days) is greater than zero. A valid range of values is 0 to 364 days. This is a feature of the HP Security Monitor. For more information see the MPE/iX Security Features System Manager's Guide.
6022 User Password Aging Maximum Days (I32) Put: No; Verify: Yes; Release 5.0

Returns the maximum period in days for which a user password is valid, this includes the expiration period. Password aging is enforced only on REQUIRED user passwords. When the user maximum is set, the global user maximum age is ignored. The user maximum days cannot exceed the global user maximum days. A valid range of values is 0 to 365 days. This is a feature of the HP Security Monitor. For more information see the MPE/iX Security Features System Manager's Guide.
6023 Password Aging Warning Days (I32) Put: No; Verify: Yes; Release 5.0

Returns the warning period in days the user is given before the password expires. Password aging is enforced only on REQUIRED user passwords. This value is used only when item 6022 (maximum days) is greater than zero. A valid range of values is 0 to 364 days. This is a feature of the HP Security Monitor. For more information see the MPE/iX Security Features System Manager's Guide.
6024 Password Aging Expiration Days (I32) Put: No; Verify: Yes; Release 5.0

Returns the number of days a user password is expired before becoming invalid. A user can still change an expired password. Once the password exceeds the expired period it is placed in an invalid state. Once invalid, only the system or account manager can change the password. Password aging is enforced only on REQUIRED user passwords. A valid range of values is 0 to 364 days. This is a feature of the HP Security Monitor. For more information see the MPE/iX Security Features System Manager's Guide.
6025 Encrypted Password (CA16) Put: No; Verify: No; Release 5.0

Returns the encrypted password of the specified user if one exists, otherwise, blanks are returned. See item 6002.

Table 3-3 Group Item Descriptions
Item Number Item Name (Data Type) Get; Put; Verify; Release First Available Description
6101 Group name (CA16) Put: No; Verify: Yes; Release 3.0

Returns the name of the group (left-justified and padded with blanks).
6102 Group Password (CA16) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the password of the specified group.

The HP 3000 Security Monitor/iX Product available on Release 5.0 provides password encryption. With password encryption turned on, a new password is automatically encrypted before it is stored in the system directory. The encryption facility works one way. Even if you know the encryption algorithm, you cannot reconstruct a password in plain language from its encrypted version. Therefore, encrypted passwords will NOT be returned in this item; instead the text "*ENCRYPTED*" is returned. See item 6015.
6103 Group Capabilities (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the capability mask for this group. It is a bit map and, if the bit is set to 1, the group owns the corresponding capability. The group capabilities cannot be greater than the corresponding account capabilities. Bits and their meanings are listed below:
    Bits (0:23) Unused (set to zero)
    Bit (23:1) BA
    Bit (24:1) IA
    Bit (25:1) PM
    Bits (26:2) Unused (set to zero)
    Bit (28:1) MR
    Bits (29:1) Unused (set to zero)
    Bit (30:1) DS
    Bit (31:1) PH
6104 Group Access/security (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the group access/security mask. Bits and their meanings are:
    Bits (0:2) Unused
    Bit (2:1) Read any
    Bit (3:1) Read account user
    Bit (4:1) Read account librarian
    Bit (5:1) Read group user
    Bit (6:1) Read group librarian
    Bit (7:1) Append any
    Bit (8:1) Append account user
    Bit (9:1) Append account librarian
    Bit (10:1) Append group user
    Bit (11:1) Append group librarian
    Bit (12:1) Write any
    Bit (13:1) Write account user
    Bit (14:1) Write account librarian
    Bit (15:1) Write group user
    Bit (16:1) Write group librarian
    Bit (17:1) Lock any
    Bit (18:1) Lock account user
    Bit (19:1) Lock account librarian
    Bit (20:1) Lock group user
    Bit (21:1) Lock group librarian
    Bit (22:1) Execute any
    Bit (23:1) Execute account user
    Bit (24:1) Execute account librarian
    Bit (25:1) Execute group user
    Bit (26:1) Execute group librarian
    Bit (27:1) Save any
    Bit (28:1) Save account user
    Bit (29:1) Save account librarian
    Bit (30:1) Save group user
    Bit (31:1) Save group librarian
6105 Group Accumulated space (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the number of sectors currently allocated to files in this group.
6106 Group Maximum allowed space (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the maximum number of sectors that may be allocated to files in this group.
6107 Group Accumulated CPU time (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the number of CPU seconds used by this group.
6108 Group Maximum allowed CPU time (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the maximum amount of CPU seconds allowed for this group.
6109 Group Accumulated connect time (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the accumulated connect time in minutes for this group.
6110 Group Maximum allowed connect time (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the maximum number of connect minutes allowed for this group.
6111 Group Linkage (I32) Put: No; Verify: Yes; Release 3.0

Returns the number of accounts this group is linked into.
Currently has a value of 1.
6112 Volume set name (CA32) Put: No; Verify: Yes; Release 3.0

Returns the name of the volume set on which this group resides (left-justified and padded with blanks).
6113 Group Password validation (CA16) Put: No; Verify: No; Release 3.0

Passes a group password. The corresponding status in the itemstatus_array will contain an error and the overall_status an index if the actual group password does not match the specified group password.
6114 Encrypted? (B) Put: No; Verify: Yes; Release 5.0

Returns true if the group password is encrypted and false when the group password is plain text. The encryption feature is enabled in the Global Security Options Menu of the HP Security Monitor. For more information see the MPE/iX Security Features System Manager's Guide.
6115 Group Encrypted Password (CA16) Put: No; Verify: No; Release 5.0

Returns the encrypted password of the specified group if one exists, otherwise, blanks are returned. See item 6102.

Table 3-4 Account Item Descriptions
Item Number Item Name (Data Type) Get; Put; Verify; Release First Available Description
6201 Account name (CA16) Put: No; Verify: Yes; Release 3.0

Returns the account name (left-justified and padded with blanks).
6202 Account Password (CA16) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the password of the specified account.

The HP 3000 Security Monitor/iX Product available on Release 5.0 provides password encryption. With password encryption turned on, a new password is automatically encrypted before it is stored in the system directory. The encryption facility works one way. Even if you know the encryption algorithm, you cannot reconstruct a password in plain language from its encrypted version. Therefore, encrypted passwords are NOT returned in this item; instead the text "*ENCRYPTED*" is returned. See item 6219.
6203 Accounnt Capabilities (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the capability mask for this account. It is a bit map and, if the bit is set to 1, the account owns the corresponding capability. The account capabilities cannot be less than the corresponding user and group capabilities. Bits and their meanings are listed below:
    Bit (0:1) SM
    Bit (1:1) AM
    Bit (2:1) AL
    Bit (3:1) GL
    Bit (4:1) DI
    Bit (5:1) OP
    Bit (6:1) CV
    Bit (7:1) UV
    Bit (8:1) LG
    Bit (9:1) SP
    Bit (10:1) PS
    Bit (11:1) NA
    Bit (12:1) NM
    Bit (13:1) CS
    Bit (14:1) ND
    Bit (15:1) SF
    Bits (16:7)Unused (set to zero)
    Bit (23:1) BA
    Bit (24:1) IA
    Bit (25:1) PM
    Bits (26:2)Unused (set to zero)
    Bit (28:1) MR
    Bit (29:1) Unused (set to zero)
    Bit (30:1) DS
    Bit (31:1) PH
6204 Account Access/Security (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the account access/security mask:
    Bit (0:4) Unused (set to zero)
    Bit (4:1) Read any
    Bit (5:1) Read AC
    Bit (6:1) Append any
    Bit (7:1) Append AC
    Bit (8:1) Write any
    Bit (9:1) Write AC
    Bit (10:1) Lock any
    Bit (11:1) Lock AC
    Bit (12:1) Execute any
    Bit (13:1) Execute AC
    Bit (14:1) Save any
    Bit (15:1) Save AC
    Bit (16:16) Unused (set to zero)
6205 Account Accumulated space (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the number of sectors currently allocated to files in this account.
6206 Account Maximum allowed space (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the maximum number of sectors that may be allocated to files in this account.
6207 Account Accumulated CPU time (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the number of CPU seconds used by this account.
6208 Account Maximum allowed CPU time (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the maximum number of CPU seconds allowed for this account.
6209 Account Accumulated connect time (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the accumulated connect time in minutes for this account.
6210 Account Maximum allowed connect time (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the maximum number of connect minutes allowed for this account.
6211 Account Maximum priority (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies a priority that is the maximum allowed for the account. The maximum priority for an account is specified by using the MAXPRI parameter of the NEWACCT and ALTACCT command. The values and their associated queues are:
    100 BS queue
    150 CS queue
    200 DS queue
    250 ES queue
6212 Account UDC Index (I32) Put: No; Verify: Yes; Release 5.0

The offset into COMMAND.PUB.SYS for account UDCs. COMMAND.PUB.SYS reflects the UDC environment that takes effect the next time the user logs on.
6213 System UDC Index (I32) Put: No; Verify: Yes; Release 5.0

The offset into COMMAND.PUB.SYS for system UDCs. COMMAND.PUB.SYS reflects the UDC environment that takes effect the next time the user logs on.
6214 Account Local attributes (I32) Put: Yes; Verify: Yes; Release 3.0

Returns or modifies the user definable attributes of this account.
6215 Account Password validation (CA16) Put: No; Verify: No; Release 3.0

Passes an account password. The corresponding status in the itemstatus_array will contain an error and the overall_status an index if the password does not match the specified account password.
6216 GID (I32) Put: No; Verify: No; Release 4.5

Returns the Group ID associated with this account. The Group ID (GID) provides file group class security for MPE/iX. The GID is added to the group database, HPGID.PUB.SYS, when a new account is created with the NEWACCT command.
6217 Account Encrypted? (B) Put: No; Verify: Yes; Release 5.0

Returns true if the account password is encrypted and false when the account password is plain text. The encryption feature is enabled in the Global Security Options Menu of the HP Security Monitor. For more information see the MPE/iX Security Features System Manager's Guide.
6218 Account Users Passwords Required (B) Put: No; Verify: Yes; Release 5.0

Returns true when all users in an account are required to have user level passwords. The required password is set via the USERPASS=REQ option on the NEWACCT and ALTACCT commands when the HP Security Monitor is installed. For more information see the MPE/iX Security Features System Manager's Guide.
6219 Account Encrypted Password (CA16) Put: No; Verify: No; Release 5.0

Returns the encrypted password of the specified account if one exists, otherwise, blanks are returned. See item 6202.

3.2 AIFACCTPUT

3.4 AIFCHANGELOGON