LOGIN or LOGON command

From m204wiki
Jump to navigation Jump to search

Summary

Privileges
Any user
Function
Logs in to the Model 204 system

Syntax

{LOGIN | LOGON} userid [account]

Where:

userid A character string that identifies the user who is logging in to Model 204. The user ID can be 1 to 10 characters in length.

When an external security interface is performing login validation, the range for the user ID might differ.

account A character string that identifies the account under which the user is logging in to Model 204. The account can be 1 to 10 characters in length. Under an external security interface, the maximum for account might differ.

The account identifies the user account to Model 204's accounting routines. The value of account in these routines might be affected by the use of an external security interface. Refer to the Model 204 Security Interfaces Manual for a detailed discussion of security interfaces. If the login feature is not in use, the string NO ACCOUNT is used as the account.

Example

In this example, a user logs in to Model 204:

LOGIN BLOOM D0101005 *** M204.0347: PASSWORD BUDGET *** M204.0353: BLOOM D0101005 LOGIN 88 JUL 11 12.04

Usage notes

The LOGIN and LOGON commands allow the user to gain access to Model 204 at most installations. The system manager controls whether or not the login procedure is required at an installation. If the login procedure is not required, the user is assigned a default set of privileges.

Once a user has connected to Model 204, and if the system manager has set the Model 204 option to require logins, any commands entered by the user (other than LOGIN or LOGON) display a request for the user to log in.

Failing to log in correctly

If either the user ID or the password is incorrect, Model 204 displays a message that the login failed. If an error occurs, the user reissues the LOGIN command.

  • Model 204 provides login delays for threads that repeatedly fail to log in correctly. Refer to the discussion of this feature in Login delays.
  • A password must follow restrictions. At a minimum a password cannot contain spaces, commas, or colons, and must not be the same as the USERID, the current password, or the previous password. Additional restrictions may apply with the Password Expiration feature or be specific to your site. See "Setting a password" below.
  • IFSTRT and IFDIAL threads can change the password by appending a colon and the new password, as described above. When the password security feature is installed, the more restrictive password rules apply, except that IFSTRT threads do not require the user to reenter the new password.

Setting a password

After you enter a LOGIN or LOGON command, enter a password after the system prompt:

*** M204.0347: PASSWORD password

If the Password Expiration feature was installed at your site, the following message is also issued to confirm your password:

M204.2633: RE-ENTER NEW PASSWORD

password is a character string. The length of password is:
1 to 8 characters long (Model 204 version 7.6 or earlier)
1 to 127 characters long (Model 204 version 7.7 or later).

  • Without the Password Expiration feature installed, a password cannot contain spaces, commas, or colons (unless PWDCOLON=1 is set in version 7.6). The password gives the user access to the system.
  • With the Password Expiration feature installed, the password cannot contain spaces, commas, or colons (unless PWDCOLON=1 is set in version 7.6). Also, the password must:
    • Not be the same as the USERID, the current password, or the previous password.
    • Be six, seven, or eight characters long (Model 204 version 7.6 or earlier), or
      be at least six characters long and up to a maximum of 127 characters (Model 204 version 7.7 or later).
    • Begin with an alphabetic character.
    • Include at least one numeric character.

Changing a password

In Model 204 version 7.5 or earlier, change your password by entering your existing password, a colon, and your new password:

*** M204.0347: PASSWORD password:new password

new password is governed by the same limitations and requirements as password. However, you can enter a new password at login only if your user privileges include the ability to change your password as you log in.

When a new password is being specified, the password and the new password must be separated by a colon (:). When the user enters the password, Model 204 masks it from view.

In Model 204 version 7.6 only, if PWDCOLON=1 is set, you cannot change your password using password:new password because colons are allowed in passwords. You can change your password in one of the following ways:

  • using the LOGCTL C command (system manager privileges required)
  • using the $Sir_Login function call (in Janus Web Server and Janus Sockets applications)

After login

After logging in, the user has access to most of the Model 204 system commands. The user ID under which the user logs in determines which privileges are available. These privileges can include the ability to:

  • Change the login password
  • Change file passwords
  • Use restricted commands such as CREATE FILE and MONITOR
  • Reset restricted parameters with the RESET command

For information on the login process for an external security interface, see the Model 204 security interfaces.