Avoid Common IBM i Password Security Exposures

  • Home
  • /
  • Blog
  • /
  • Avoid Common IBM i Password Security Exposures

July 30, 2017

Avoid Common IBM i Password Security Exposures

By NickLitten

July 30, 2017

IBM i, security

To avoid common IBM i password security exposures, consider these best practices:

  1. Use Longer Passwords or Passphrases: Avoid short passwords. Set the password level (QPWDLVL) to 2 or 3 to allow passwords up to 128 characters. This enables the use of passphrases, which are harder to hack
  2. Enforce Complexity Rules: Implement rules that require a mix of uppercase and lowercase letters, numbers, and special characters. Use the *REQANY3 value in QPWDRULES to enforce this
  3. Limit Sign-On Attempts: Set the maximum sign-on attempts (QMAXSIGN) to a low number, such as 3. This prevents unauthorized users from making unlimited attempts to guess passwords
  4. Avoid Common Words and Personal Information: Ensure passwords are not based on easily guessable information like names, birthdays, or common words
  5. Regularly Update Passwords: Encourage or enforce regular password changes to minimize the risk of compromised credentials
  6. Monitor and Audit: Regularly monitor and audit password policies and usage to ensure compliance and identify potential security issues

By following these practices, you can significantly enhance the security of your IBM i system.

{"email":"Email address invalid","url":"Website address invalid","required":"Required field missing"}

Join the IBM i Community for FREE Presentations, Lessons, Hints and Tips

>