Logon as User
     Version History

Logon as User
Simulated user sign-on 

Logon-as-User allows you to 'sign on' as another user without having that user's password.

Useful for

  • Testing menu security - find out if the menu setup is going to cause problems for users.
  • Testing authorities - are object authorities going to cause problems for certain users? Find the problems before they happen.
  • Find out what menu options are available to a user.  This is often difficult to to determine by looking at menu setup files because menu setup options can be complicated.
  • Allow a user to access the options of another user who has become temporarily unavailable, without changing menu setup.

This product consists of three components that will allow you to successfully achieve the above.

Command #1: Log on as User - LOGONUSER -- FREE feature!

The tool is activated from your current session by entering the command LOGONUSER followed by a user profile name.  After pressing Enter, you will be taken into the initial program of that user.  The user profile, library list, attention key and authorities will be overridden to match the new user, and will revert to their previous settings upon exiting the tool.  This command will work in most situations providing that the job's user name is not checked.  The LOGONUSER command is a Free Feature.  After restoring the product library this command will work without restrictions.

Command #2: Log on as Virtual Session - LOGONVT

This tool is activated from your current session by entering the command LOGONVT followed by a user profile name.  This will start an interactive virtual terminal session (a new job) as that other user which will be linked to your current job.  This command works better than LOGONUSER because the job is actually running under that user.  When that session ends you will returned to your own session.

Command #3: Change Password Temporarily - CHGPWDTMP

This command CHGPWDTMP will allow you to change a user's password to something else, allowing you to sign on as them for real.  You can then change the password back to its previous value (without knowing what it was originally) with the *UNDO option.  This is done without affecting the password's last change date, so it does not disturb the expiry interval.

This is useful for two situations: (a) A key user is away for a few days.  You need someone to access their menu options, but updating menus is troublesome.  By using this function you can change the password, then later change it back without upsetting the original user.  (b) When there are restrictions placed on the system that would limit virtual terminal sessions being started, e.g. there are exit point programs that limit the number of sessions or require the sessions to linked to an internal IP address.  In this case the LOGONVT command won't work properly, so you can use this command instead.

[Note: Due to restrictions in the latest operating system, CHGPWDTMP is not available in V6R1.]

Security features

This product contains a number of security features to guard against it being misused.  The main security feature is that it will not allow you to access user profiles that have more special authority than you do.  But there are other checks also, depending on the command being used, and journal records that get written to the system journal QAUDJRN if security audit journaling is active.  The product also allows the security checks to be less severe via the option of *HIGH and *LOW security levels - see the manual for more information.

DOWNLOAD a Free Trial Version.
Pricing and ordering information.