Securing your system

 

The recommended system values are generated by the IBM® eServer™ Security Planner for the Sampson Organic Produce Company.

Complete the IBM eServer Security Planner to review these details.

Tip: The following recommendations do not include full descriptions of security values and operational considerations for these system values.

Table 1. General security recommendations
System value Recommended value
QSECURITY 40
QINACTITV 60
QINACTMSGQ *DSCJOB
QDSCJOBITV 240
QSHRMEMCTL 1 (Yes)
QRETSVRSEC 1 (Yes)
QRMTSRVATR 0 (No)
QRMTIPL *NONE

Table 2. Password policy recommendations
System value Recommended value
QPWDLVL 0
QPWDEXPITV 90
QPWDMINLEN 8
QPWDRQDDIF 8
QPWDLMTCHR *NONE
QPWDLMTAJC 0 (allowed)
QPWDLMTREP 0 (characters can be repeated)
QPWDPOSDIF 0 (No)
QPWDRQDDGT 1 (Yes)
QPWDVLDPGM *NONE

Table 3. Sign-on policy recommendations
System value Recommended value
QDSPSGNINF 1 (Yes)
QLMTDEVSSN 0 (No)
QLMTSECOFR 1 (Yes)
QMAXSIGN 3
QMAXSGNACN 2 (disable user profile)
QRMTSIGN *FRCSIGNON (always display sign-on)

Table 4. Restore policy recommendations
System value Recommended value
QALWOBJRST *ALWPTF
QVFYOBJRST 3
QFRCCVNRST 3

Table 5. Auditing policy recommendations
System value Recommended value
QAUDCTL *AUDLVL,*OBJAUD, *NOQTEMP
QAUDCTL *NONE

Auditing reports will be scheduled monthly.

 

Parent topic:

Scenario: Setting up System i to communicate with LAN