I think it’s not having multiple ID inasmuch as the implied sharing. Oddly enough, I’ve run into a situation where some customers want to map multiple distributed IDs to a shared mainframe ID for a given function in an application to avoid creating hundreds of IDs for the application support personnel. I guess quantity has a quality all its own.
Matt Hogstrom “It may be cognitive, but, it ain’t intuitive." — Hogstrom > On Jul 14, 2023, at 9:15 AM, David Spiegel > <00000468385049d1-dmarc-requ...@listserv.ua.edu> wrote: > > Hi R'Shmuel AMV"SH, > You said: "...Auditors don't like multiple user ids..." > It's not the first time auditors have had illogical ideas. > > OTOH, 2 or more people sharing a Userid is BAD. > > Regards, > David > > On 2023-07-14 08:38, Seymour J Metz wrote: >> Auditors don't like multiple user ids, but sysprogs are usually in multiple >> roles, with different authority requirements. >> >> ________________________________________ >> From: IBM Mainframe Discussion List <IBM-MAIN@LISTSERV.UA.EDU> on behalf of >> Colin Paice <colinpai...@gmail.com> >> Sent: Friday, July 14, 2023 7:57 AM >> To: IBM-MAIN@LISTSERV.UA.EDU >> Subject: Re: Userid schemes >> >> Some of the UK banks use your D.O.B as an account number - such as >> 601225JC12 ! which exposes sensitive information. >> >> At one point some of us had two userids. SYSPROG1 ... for sysprog stuff, >> and a personal ID. >> When anyone moved on they just reallocated SYSPROG1 to a new user, and all >> the accesses continued to work. >> If you use a personal ID, you had to connect it to a lot of groups to get >> the access, and remove the retiree from the same groups. >> Role based userids are much better and less work >> >> Colin >> >> >> >> On Fri, 14 Jul 2023 at 10:39, Radoslaw Skorupka < >> 00000471ebeac275-dmarc-requ...@listserv.ua.edu> wrote: >> >>> W dniu 14.07.2023 o 02:32, Paul Gilmartin pisze: >>>> On Thu, 13 Jul 2023 20:17:38 -0400, Matt Hogstrom wrote: >>>> >>>>> A place I worked used initials followed by a 5 digit employee ID. >>> xxnnnnn >>>> Many years ago someone reported here that in Canada it was illegal to >>>> use an employee# as a UID because it's considered privileged HR >>> information. >>>> I'd guess the same applies to user IDs. >>> >>> I would like to know the explanation of such statement. IMHO employee# >>> is as internal as userid. >>> It is NOT SSN or other government number. >>> >>> -- >>> Radoslaw Skorupka >>> Lodz, Poland >>> >>> ---------------------------------------------------------------------- >>> For IBM-MAIN subscribe / signoff / archive access instructions, >>> send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN >>> >> ---------------------------------------------------------------------- >> For IBM-MAIN subscribe / signoff / archive access instructions, >> send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN >> >> ---------------------------------------------------------------------- >> For IBM-MAIN subscribe / signoff / archive access instructions, >> send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
