Print User Profile (PRTUSRPRF)

The Print User Profile (PRTUSRPRF) command allows you to print a report containing information for the user profiles on the system. Four different reports can be printed. One contains authority type information, one contains environment type information, one contains password type information, and one contains password level type information.

The authority information report will contain the following information:

The type of report.
The criteria used to select user profiles in the report.
The special authorities being selected on (if 'Select by' is *SPCAUT).
The user classes being selected on (if 'Select by' is *USRCLS).
An entry for each user profile that was selected. Each entry contains the following information:
- The name of the user profile.
- The names of the user's group profiles.
  If the user profile does not have any group profiles, this field will contain '*NONE'. If the user has group profiles, an additional entry will follow the user profile entry for each of the user's groups. The entry will contain the group profile name and the special authorities that the group profile has.
- An indicator for the special authorities that the user profile has ('X' or ' ').
- The user class for the user profile.
- Whether the user profile or its group profile own objects created by this user profile.
- What authority is given to the user's group profile for newly created objects (if the owner value is *USRPRF).
- The limited capability value for the user profile.

The environment information report will contain the following information:

The type of report.
The criteria used to select user profiles in the report.
The special authorities being selected on (if 'Select by' is *SPCAUT).
The user classes being selected on (if 'Select by' is *USRCLS).
An entry for each user profile that was selected. Each entry contains the following information:
- The name of the user profile.
- The name of the user's current library.
- The name of the user's initial menu, and the library it is in.
- The name of the user's initial program, and the library it is in.
- The name of the user's job description, and the library it is in.
- The name of the user's message queue, and the library it is in.
- The name of the user's attention program, and the library it is in.

The password information report will contain the following information:

The type of report.
The criteria used to select user profiles in the report.
The special authorities being selected on (if 'Select by' is *SPCAUT).
The user classes being selected on (if 'Select by' is *USRCLS).
The value of the QPWDEXPITV system value (for reference if the user's password expiration interval is *SYSVAL).
An entry for each user profile that was selected. Each entry contains the following information:
- The name of the user profile.
- The status of the user profile.
- The number of sign-on attempts that were not valid.
- The 'no password' indicator ('X' if the user doesn't have a password, ' ' if it does).
- Whether the password is managed locally.
- The user's previous sign-on date.
- The date the user's password was last changed.
- The user's password expiration interval.
- Whether the user's password is set to expired.

The password level information report will contain the following information that can be used to determine if the system is ready to change password levels.

The type of report.
The criteria used to select user profiles in the report.
The special authorities being selected on (if 'Select by' is *SPCAUT).
The user classes being selected on (if 'Select by' is *USRCLS).
An entry for each user profile that was selected. Each entry contains the following information:
- The name of the user profile.
- The 'password present for level 0 or 1' indicator ('*YES' if the user has a password, '*NO' if the user does not have a password, or '*UNKNOWN' if the password information was not available).
- The 'password present for level 2 or 3' indicator ('*YES', '*NO', or '*UNKNOWN').
- The 'password present for NetServer' indicator for Windows 95 and 98 NetServer passwords ('*YES', '*NO', or '*UNKNOWN').

Note: The Display Security Attributes (DSPSECA) command can be used to display the current and pending password level for the system. The password level can be changed by changing the QPWDLVL system value.

Restriction: You must have all object (*ALLOBJ) or audit (*AUDIT) special authority to run this command.

Parameters

Keyword	Description	Choices	Notes
TYPE	Type of information	ALL, AUTINFO, ENVINFO, PWDINFO, *PWDLVL	Optional
SELECT	Select by	SPCAUT, USRCLS, *MISMATCH	Optional
SPCAUT	Special authorities	Single values: ALL Other values (up to 9 repetitions): ALLOBJ, AUDIT, JOBCTL, IOSYSCFG, SAVSYS, SECADM, SERVICE, SPLCTL, NONE	Optional
USRCLS	User class	Single values: ALL Other values (up to 5 repetitions): USER, SYSOPR, PGMR, SECADM, SECOFR	Optional

Top

Type of information (TYPE)

The type of information that can be printed for the selected user profiles.

*ALL: All of the reports are printed for the selected user profiles.
*AUTINFO: A report containing the authority type information for the selected user profiles is printed.
*ENVINFO: A report containing the environment type information for the selected user profiles is printed.
*PWDINFO: A report containing the password type information for the selected user profiles is printed.
*PWDLVL: A report containing the password level type information for the selected user profiles is printed. This report can be used to determine which user profiles have passwords that are used at the different password levels.

Select by (SELECT)

Specifies what criteria is used to select the user profiles to include in the report.

*SPCAUT: User profiles will be selected for the report based on special authorities.
*USRCLS: User profiles will be selected for the report based on user class.
*MISMATCH: User profiles will be selected for the report based on their special authorities not being the default values assigned to their user class.
Note: The defaulted special authorities for user classes changed in V3R7. Therefore, when running this report for profiles created prior to V3R7, you may notice a larger than expected number of profiles that do not match the default values.

Special authorities (SPCAUT)

If *SPCAUT was specified for the Select by (SELECT) parameter, it specifies which special authorities should be used to select users. User profiles with any of the special authorities specified for this parameter will be included in the report. A maximum of 9 special authorities can be specified.

You can enter multiple values for this parameter.

*ALL: All user profiles will be included in the report.
Or select one or more of the following values (9 maximum):
*ALLOBJ: User profiles with *ALLOBJ special authority will be included in the report.
*AUDIT: User profiles with *AUDIT special authority will be included in the report.
*IOSYSCFG: User profiles with *IOSYSCFG special authority will be included in the report.
*JOBCTL: User profiles with *JOBCTL special authority will be included in the report.
*SAVSYS: User profiles with *SAVSYS special authority will be included in the report.
*SECADM: User profiles with *SECADM special authority will be included in the report.
*SERVICE: User profiles with *SERVICE special authority will be included in the report.
*SPLCTL: User profiles with *SPLCTL special authority will be included in the report.
*NONE: User profiles with no special authorities will be included in the report.

User class (USRCLS)

If *USRCLS was specified for the Select by (SELECT) parameter, it specifies that user classes should be used to select users. User profiles with a user class that is specified for this parameter will be included in the report. A maximum of 5 user classes can be specified.

You can enter multiple values for this parameter.

*ALL: All user profiles will be included in the report.
Or select one or more of the following values (5 maximum):
*USER: User profiles with *USER user class will be included in the report.
*SYSOPR: User profiles with *SYSOPR user class will be included in the report.
*PGMR: User profiles with *PGMR user class will be included in the report.
*SECADM: User profiles with *SECADM user class will be included in the report.
*SECOFR: User profiles with *SECOFR user class will be included in the report.

Examples

PRTUSRPRF   TYPE(*ALL)  SELECT(*SPCAUT)  SPCAUT(*ALLOBJ *SECADM)

This command prints all four reports for user profiles that have either *ALLOBJ or *SECADM special authority.

Error messages

*ESCAPE Messages

CPFB304: User does not have required special authorities.
CPFB307: Command &1 in use in another job.