The following definitions will help you understand the service
tools user IDs and passwords information.
- Data Encryption Standard (DES)
- A type of reversible encryption algorithm. DES uses two pieces of information,
the data to be encrypted and the key to use to encrypt the data. If you supply
DES with the encrypted data and the encryption key, you can decrypt the data
and get the original data.
- dedicated service tools (DST)
- Dedicated service tools (DST) are service functions that are available
only from the console and can run when the operating system is not available,
as well as when the operating system is available.
- default password
- When the password is the same as the service tools user ID. For example,
the IBM-supplied QSECOFR service tools user ID is shipped with a default password
of QSECOFR.
- disabled password
- A password that has been marked as being unable to sign on with it because
you have had too many invalid sign-on attempts. You cannot sign on using a
disabled password.
- expired password
- A password that has not been changed within 180 days or more. You can
still sign on using an expired password, but you must change the password
at the time of sign-on.
- functional privileges
- The ability to grant or revoke access to individual service tools functions.
- i5/OS™ user
profiles
- User profiles that are created with the Create User Profile (CRTUSRPRF) control
language (CL) command or iSeries™ Navigator, and are used to sign on to the
operating system.
- locked
- The mechanism used to control programmatic changes to certain functions.
If a function is "locked", it cannot be changed through normal user interfaces.
You must unlock it in order to change it.
- password levels
- Within DST, a password level can be set. The password level specifies
whether Data Encryption Standard (DES) or Secure Hash Algorithm (SHA) encryption
is used when storing passwords. The default level is DES.
- Secure Hash Algorithm (SHA)
- An encryption method in which data is encrypted in a way that is mathematically
impossible to reverse. Different data can possibly produce the same hash value,
but there is no way to use the hash value to determine the original data.
- service functions
- Service functions are specific capabilities within service tools. Service
functions are typically used for problem analysis and problem solving, often
with the assistance of IBM® support. Examples of service functions include Licensed
Internal Code trace, Licensed Internal Code log, and the display, alter, dump
function.
- service tools
- Functions that are used to configure, manage, and service important operational
aspects of the server. Service tools allow you to do such tasks as configuring
your logical partitions, managing your disk units, and troubleshooting
problems. Service tools are accessed through dedicated service tools (DST),
system service tools (SST), and other service-related CL commands. Improper
use of service tools can damage your server.
- service tools device IDs
- Used with LAN console to control access to the system.
- service tools server
- The service tools server allows you to use your PC to perform service
tools functions through TCP/IP.
- service tools user IDs
- A user ID that is required to access DST, SST, iSeries Navigator (for logical partitions
and disk unit management), and Operations Console. Service tools user IDs
are created through DST or SST, and they are separate from user profiles.
- system service tools (SST)
- System service tools (SST) allow you to access service functions from
operating system. Service tools are accessed using the STRSST (Start
SST) CL command.