XYGATE Access Control Reference Manual

XYGATE

Access Control Reference Manual

Appendix C: The ACACL File

XYPRO Technology Corporation 198 Proprietary and Confidential

C65: PASSWORDTIMEOUT

This keyword causes the XYGATEAC process to prompt the user for the password for

the XAC session’s originating NonStop Kernel userid or alias when activity occurs after

the specified timeout period. After the correct password is entered, execution resumes.

The normal program termination TIMEOUT still applies and can occur even at the

password prompt. If an incorrect password is entered, the error is logged to all defined

Command Audit Log files with a COMMAND-STATUS value of “P.” Should a

PASSWORDTIMEOUT occur while a BLOCK Mode application is running, the

PASSWORDTIMEOUT prompt will appear when the application returns to

CONVERSATIONAL mode. If Ctrl+Y is entered at the PASSWORDTIMEOUT prompt,

the XAC session is terminated.

Syntax:

PASSWORDTIMEOUT <seconds>

Example:

COMMAND TACL-255

DESCRIPTION "SUPER TACL"

USER 255,255

OBJECT $SYSTEM.SYSNN.TACL

ACL 255,*

TIMEOUT 1800

PASSWORDTIMEOUT 600

The above example would cause the user to be prompted to enter the password of the

userid who executed the XAC ACACL Command Entry, if more than 600 seconds

(10 minutes) of inactivity has occurred since the last user entry. The timeout that

terminates execution still applies, so after 1800 seconds (30 minutes) of inactivity, the

program is terminated.

Note: PASSWORDTIMEOUT validates the userid and password when the password

is entered. This means that a frozen or expired userid will result in

PASSWORDTIMEOUT replying that the password is invalid. If the password

has expired, the user will be prompted to change the password before execution

continues.