The CUTPWHIS utility
CUTPWHIS is an assembler program which removes non-usable passwords from the RACF password history. Non-usable passwords are created when the password history (SETROPTS PASSWORD(HISTORY(xxx)) value is reduced.
For example, assume that SETROPTS PASSWORD(HISTORY(5)) has been specified and FRED's last five passwords are 'AAA', 'BBB', 'CCC', 'DDD', and 'EEE'. The password history is then reduced from 5 to 3 by the use of the SETROPTS PASSWORD(HISTORY(3)) command. FRED may never use the last two entries in his password history ('DDD' and 'EEE') again. CUTPWHIS removes the 'DDD' and 'EEE' entries from the password history.
The CUTPWHIS utility consists of these files:
- Assembler source code for the CUTPWHIS utility (TXT, 17.6KB)
- JCL to invoke the CUTPWHIS utility (TXT, 5.9KB)
You must assemble CUTPWHIS and link-edit it into an APF-authorized library. CUTPWHIS must be link-edited as "non-reentrant", which can be done by specifying
PARM='NORENT,AC=1' on your linkage editor invocation.
Users of CUTPWHIS must have UPDATE authority to the resource RACF.PASSWORD.MAINTENANCE.HISTORY.LNGTH in the FACILITY class.
We welcome your comments and questions on the CUTPWHIS utility. Please direct them to the RACF-L mailing list. Subscription information for RACF-L can be found from the RACF-L Discussion List Page.
This program contains code made available by IBM Corporation on an "AS-IS" basis. Any one receiving this program is considered to be licensed under IBM copyrights to use the IBM-provided code in any way he or she deems fit, including copying it and redistributing it, except that it may be neither sold nor incorporated within a product that is sold. No license under any IBM patents or patent applications is to be implied from this copyright license.
The software is provided "as-is", and IBM disclaims all warranties, express or implied, including but not limited to implied warranties of merchantability or fitness for a particular purpose.
This page was last updated March 2012.