Guardian Procedure Calls Reference Manual (G06.25+)

ManualsBrandsHP ManualsServerHP NonStop G-Series

1561

Guardian Procedure Calls (T-V)

Guardian Procedure Calls Reference Manual—522629-013

15-37

USER_AUTHENTICATE_ Procedure

last-logon-time output

FIXED .EXT:ref:1

returns the Julian timestamp of when the specified user last logged on. If the

specified user has never logged on, 0F is returned.

time-password-expires output

FIXED .EXT:ref:1

returns the Julian timestamp of when the password of the specified user expires. If

either the password cannot be changed at the time USER_AUTHENTICATE_ is

called or the password has no expiration date, 0F is returned.

Considerations

•

Conducting a dialog

A dialog allows the application to interact with the security mechanism. To initiate

a dialog, set

dialog-id to 0F and set inputtext to user name.

USER_AUTHENTICATE_ returns a new

dialog-id to identify the next

interaction with the procedure, returns

error 70 to indicate a dialog, and a

status value indicating the type of information that inputtext should have in the

next call.

•

Setting inputtext to authenticate a user and optionally log on

To authenticate a user and to optionally log on, the call to

USER_AUTHENTICATE_ must provide a user and usually a password. In this

RVU, the user and password can be specified in input

text as follows:

"user, password"

user

is specified in inputtext by user name, user ID, or alias. A user ID cannot

be specified when

options bit <12> is set to 1. An alias cannot be specified

when Safeguard software is not running.

During a dialog, for example, input

text can specify the user in the first call and

the password in the second call.

•

Setting inputtext to authenticate a user, log on, and change the password

In this RVU, to log on a user and change a password, the call to

USER_AUTHENTICATE_ must provide a user, a password, and two matching new

passwords. A password can be changed only if Safeguard software is running.

This information is specified in input

text as follows:

"user, password, newpassword, newpassword"

Note. An application should conduct a dialog with the security mechanism and determine the

content of inputtext by the returned value of status when error is 70. The content of

inputtext can change from RVU to RVU, so authentication in a single call to

USER_AUTHENTICATE_ cannot be guaranteed.