CCA Release 2.54
Figure B-34 (Page 2 of 2). Functions Permitted in Default Role
Code Function Name
X'0113' Change the expiration date in a user profile
X'0114' Change the authentication data (for example, passphrase) in a user
profile
X'0115' Reset the logon failure count in a user profile
X'0116' Read public access-control information
X'0117' Delete a user profile
X'0118' Delete a role
Profile Structure
This section describes the data structures related to user profiles.
Basic Structure of a Profile
The following figures describe how the Profile data is structured. This is the format
used when profile data is transferred to or from the Coprocessor, using verbs
Access_Control_Initialization or Access_Control_Maintenance.
Bytes Field
┌───────┐
2 │ │ Profile structure version (X'1', X'')
├───────┤
2 │ │ Profile length
├───────┴──────────────────────────── ─ ───────────┐
2 │ │ Comment
├───────┬──────────────────────────── ─ ───────────┘
2 │ │ Checksum
├───┬───┘
1 │ │ Logon failure count
├───┤
1 │ │ Reserved
├───┴───────────────────────────┐
8 │ │ User ID
├───────────────────────────────┤
8 │ │ Role ID
├───────┬───┬───┬───────────────┘
4 │ │ │ │ Activation date (see format below)
├───────┼───┼───┤
4 │ │ │ │ Expiration date (see format below)
├───────┴───┴───┴──────────────────── ─ ───────────┐
variable │ │ Authentication data
└──────────────────────────────────── ─ ───────────┘
Figure B-35. Profile Layout
Bytes Field
┌───────┐
2 │ │ Year (big-endian format)
├───┬───┘
1 │ │ Month (1-12)
├───┤
1 │ │ Day (1-31)
└───┘
Figure B-36. Layout of Profile Activation and Expiration Dates
When a new profile is loaded, the host application does not provide the Logon
failure count value. This field is automatically set to zero when the profile is stored
in the Coprocessor. The failure count field should have a value of zero in the
initialization data you send with Access_Control_Initialization.
B-32 IBM 4758 CCA Basic Services, Release 2.54, February 2005