Hi David,
If I am in the middle of some activity and have say 9 ISPF screens open,
I don't want to have to re-set it up all over again just because of a 1
hour meeting.
To be secure, a Windows/Linux/Mac OS workstation could be set up with
say a 30 minute timeout, so that the mainframe session(s) are not
available to unauthorized people.
Let us though, reverse the question: Why do you care if people don't get
forced off?
Regards,
David
On 2025-05-14 12:38, David Elliot wrote:
Is there any reason why idle users should not be forced off the system.?
Sounds like very sloppy system management.to allow this.
---------- Forwarded message ---------
From: Phil Smith III <li...@akphs.com>
Date: Wed, 14 May 2025, 15:02
Subject: Re: Disable user timeout via JWT?
To: <IBM-MAIN@listserv.ua.edu>
Hmm. Still got an S522 overnight, so I guess that wasn't what you meant?
TWT looks to have the same 24-hour limit as JWT? This is a dev system, we
don't want users forced at all. Surely that's not unique, and doesn't
require use of an exit?!
-----Original Message-----
From: IBM Mainframe Discussion List <IBM-MAIN@LISTSERV.UA.EDU> On Behalf Of
Phil Smith III
Sent: Tuesday, May 13, 2025 5:58 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: Disable user timeout via JWT?
I think I did #2:
//DYNISPFM EXEC PGM=IKJEFT01,DYNAMNBR=200,TIME=1440
// PARM='%DYNISPF'
That's in my logon PROC. Is that what you meant? Yes, I know very little
about this end of z/OS (or most other ends).
I did make the change from IBMUSER and then log off and back on to be sure
I wasn't locking myself out!
Is there a way to look at the time limit for a running job? I scrolled
wayyyy right in SDSF and didn't see it.
-----Original Message-----
From: IBM Mainframe Discussion List <IBM-MAIN@LISTSERV.UA.EDU> On Behalf Of
Radoslaw Skorupka
Sent: Saturday, May 10, 2025 11:16 AM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: Disable user timeout via JWT?
W dniu 10.05.2025 o 16:33, Phil Smith III pisze:
Is there a way to keep idle users from getting forced off? JWT in
SMFPRMxx is documented as taking values 0001 to 2400. We have a handful of
users on a development system behind a VPN and don't want them forced off
ever. Is there an easy way to achieve this?
Few remarks:
1. Use TWT instead of JWT. TWT is quite new (younger than me ;-) ). It is
for TSO users.
2. Use TIME=1440 (or NOLIMIT for modern installations ;-) ) in the logon
procedure. It disables both JWT or TWT.
3. Don't forget about TCPIP settings. I can't remember the name, but
network folks like to drop inactive sessions. This is independent from
JWT/TWT, TIME=1440 and other TSO settings.
--
Radoslaw Skorupka
Lodz, Poland
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions, send email
to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions, send email
to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
