9.15 CHECK_IBMI_SIGNON
Þ Note: Built-In Function Rules.
Checks the status of the user profile on the IBM i server.
For use with
|
Arguments
|
Return Values
|
Technical Notes
Because of the way that the IBM i operating system handles user names and short passwords (Password level 0 or 1) with the US English (CCSID 037) characters '@', '#' and '$', this facility will only work with such user names and short passwords if the IBM i is operating in US English (CCSID 037).
The current implementation of SSL used for this facility ensures that encryption is negotiated and used for communication between the client and the IBM i server. It does not verify that the IBM i server is that specified on the security certificate that has been downloaded.
The interplay between SSL Required and Encrypt Password is interesting. If SSL is available and SSL Required is Y, then strictly speaking password encryption is not needed because the entire communication stream is encrypted, so Encrypt Password could be specified as N. If SSL Required is N, then we recommend that Encrypt Password be specified as Y.
The reasons for Return Code CE -Communications error can include:
- a misspelling in the IBM i Server name;
- the IBM i Server name not being locatable by your DNS;
- a firewall between the local computer and the IBM i server;
- the IBM i server being offline;
- TCP/IP not being started on the IBM i server;
- TCP/IP host servers not being started on the IBM i server;
- SSL Required Y and the SSL TCP/IP host servers not being started on the IBM i server;
- SSL not required and the non-SSL TSP/IP host servers not being started on the IBM i server.
If Return Code SE - Server Error is returned, a review of the joblog for the QZSOSIGN job on the IBM i server should show the detailed reason.