Applying and managing passwords with the batch interface

This topic describes the batch interface that you can use for product authorization outside of the Installation System. You can use the batch interface to:

Process (add, delete, and modify) passwords for a single product
Process passwords for multiple products at one time
Obtain current product authorization and processor information

You can find product-specific JCL samples in your JCL library or the Installation System library.

Important

The passwords that are created with the PGM=BLFSEC3B program are compatible with the passwords that are created with the SECSEC3B program.

This topic contains the following sections:

To apply passwords to a single product

Create the JCL.
You can use one of the following sources as a template:
- ###CPUID (in your JCL library)
- BMISPSWD (in the Installation System library)
- Sample JCL for product authorization
Follow the instructions in the JCL comments to customize the JCL.
Insert one or more password control statements for the indicated product.
Save the JCL and submit the job.

To apply passwords to multiple products at one time

Create the JCL.
You can use one of the following sources as a template:
- ###CPUID (in your JCL library)
- BMISPSWD (in the base installation library)
- Sample JCL for product authorization
Follow the instructions in the JCL comments to customize the JCL.
Create an APPLYPW step for each product for which you want to process passwords.

Insert one or more password control statements for each product.

The following figure is an example of specifying passwords for multiple products.

Example of specifying passwords for multiple products

Click here to expand...

//APPLYPW  EXEC PGM=BLFSEC3B,PARM='SPD'
//STEPLIB  DD DSN=BMC.V2400.BBLINK,DISP=SHR
//SYSLIB   DD DSN=BMC.V2400.BMCPSWD,DISP=SHR
//SYSPRINT DD SYSOUT=*,DCB=RECFM=FBA
//SYSUDUMP DD SYSOUT=*
//SYSIN    DD *
    PSWD=123,456,789,ABC      NEWCPUID=98765-4321
/* 
//APPLYPW  EXEC PGM=BLFSEC3B,PARM='AFD'
//STEPLIB  DD DSN=BMC.V2360.BBLINK,DISP=SHR
//SYSLIB   DD DSN=BMC.V2360.BMCPSWD,DISP=SHR
//SYSPRINT DD SYSOUT=*,DCB=RECFM=FBA
//SYSUDUMP DD SYSOUT=*
//SYSIN    DD *
    PSWD=456,789,ABC,123      NEWCPUID=87659-4213
/* 
//APPLYPW  EXEC PGM=BLFSEC3B,PARM='DFD'
//STEPLIB  DD DSN=BMC.V2360.BBLINK,DISP=SHR
//SYSLIB   DD DSN=BMC.V2360.BMCPSWD,DISP=SHR
//SYSPRINT DD SYSOUT=*,DCB=RECFM=FBA
//SYSUDUMP DD SYSOUT=*
//SYSIN    DD *
    PSWD=123,789,ABC,456      NEWCPUID=97658-4312
/*

Save the JCL and submit the job.

Sample JCL for product authorization

The following figure is a sample of the JCL used to run the product authorization batch utility.

Sample JCL for running batch product authorization

Click here to expand...

//*   MODIFY JOB STATEMENT BELOW AS APPROPRIATE                       *
//CPUAUTH  JOB  (ACCT),'CPUID AUTHORIZATION',MSGCLASS=X,CLASS=A        
//*                                                                    
//*                                                                    
//*********************************************************************
//*                   I N S T R U C T I O N S                          
//*********************************************************************
//*                                                                   *
//*---> MODIFY THE STEPLIB AND SYSLIB STATEMENTS BELOW.               *
//*        STEPLIB SHOULD SPECIFY THE NAME OF THE DATASET WHERE THE   *
//*           PROGRAM BLFSEC3B RESIDES.                               *
//*        SYSLIB SHOULD SPECIFY THE NAME OF THE PASSWORD LIBRARY     *
//*                                                                   *
//*-------------------------------------------------------------------*
//*                                                                   *
//*  VALID KEYWORDS AND EXAMPLES ARE:                                 *
//*                                                                   *
//*        PSWD     ==>  PSWD=XXX,XXX,XXX,XXX                         *
//*                        WHERE XXX,XXX,XXX,XXX IS THE PASSWORD      *
//*                                                                   *
//*        OLDCPUID ==>  OLDCPUID=SSSSS-MMMM                          *
//*                        WHERE SSSSS IS THE CPU SERIAL NUMBER OF    *
//*                                       YOUR 'OLD' CPU              *
//*                              MMMM  IS THE CPU MODEL NUMBER OF     *
//*                                       YOUR 'OLD' CPU              *
//*           THE 'OLDCPUID' KEYWORD IS USED WITH 'DELETE', 'REPLACE',*
//*           AND 'MODIFY' PASSWORDS.                                 *
//*                                                                   *
//*        NEWCPUID ==>  NEWCPUID=CCCCC-NNNN                          *
//*                        WHERE CCCCC IS THE CPU SERIAL NUMBER OF    *
//*                                       YOUR 'NEW' OR CURRENT CPU   *
//*                              NNNN  IS THE CPU MODEL NUMBER OF     *
//*                                       YOUR 'NEW' OR CURRENT CPU   *
//*           THIS KEYWORD IS USED WITH 'ADD' AND 'REPLACE PASSWORDS  *
//*                                                                   *
//*        LIST    ==>   LIST                                         *
//*           THIS KEYWORD WILL LIST ALL OF THE ENTRIES IN THE        *
//*           PRODUCT AUTHORIZATION TABLE.                            *
//*                                                                   *
//*                                                                   *
//* KEYWORD SYNTAX FOR PSWD, NEWCPUID, OLDCPUID:                      *
//*    THE SYNTAX FOR THE PSWD, NEWCPUID, AND OLDCPUID KEYWORDS IS    *
//*    FREE FORM.  THESE KEYWORDS MAY START IN ANY COLUMN AND IN ANY  *
//*    ORDER AS LONG AS THE STATEMENT DOES NOT EXCEED COLUMN 72.      *
//*    ALL KEYWORDS MUST BE SPECIFIED ON A SINGLE LINE WITHOUT        *
//*    COMMENTS.  THE SYSIN CONTROL STATEMENT CAN NOT BE CONTINUED.   *
//*    MULTIPLE SYSIN CONTROL STATEMENTS CAN BE PROCESSED IN A        *
//*    SINGLE JOB STEP.                                               *
//*                                                                   *
//* KEYWORD SYNTAX FOR LIST:                                          *
//*    THE LIST KEYWORD CAN NOT BE SPECIFIED WITH ANY OTHER KEYWORD.  *
//*    IF SPECIFIED IN CONJUNCTION WITH OTHER KEYWORDS, IT WILL BE    *
//*    IGNORED AND WILL NOT BE PROCESSED.  THE LIST KEYWORD SHOULD    *
//*    NOT EXCEED COLUMN 72.                                          *
//*                                                                   *
//* MULITPLE PRODUCTS / SINGLE JOBSTEPS:                              *
//*    MODIFY THE LINE CONTAINING PARM='PPP', WHERE 'PPP' IS THE      *
//*    THREE LETTER PRODUCT CODE.                                     *
//*    FOR MULTIPLE PRODUCTS, REPLICATE STEP APPLYPW CHANGING THE     *
//*    STEP NAME AND EACH PRODUCT CODE.                               *
//*                                                                   *
//* EXAMPLES:                                                         *
//*                                                                   *
//*PROCESS AN 'ADD' PASSWORD:                                         *
//*     PSWD=123,456,789,ABC      NEWCPUID=98765-4321                 *
//*                                                                   *
//*PROCESS A 'DELETE' PASSWORD:                                       *
//*     PSWD=123,456,789,ABC      OLDCPUID=98765-4321                 *
//*                                                                   *
//*PROCESS A 'MODIFY' PASSWORD:                                       *
//*     PSWD=123,456,789,ABC      OLDCPUID=98765-4321                 *
//*                                                                   *
//*PROCESS A 'REPLACE' PASSWORD:                                      *
//*     PSWD=123,456,789,ABC OLDCPUID=98765-4321 NEWCPUID=98777-4321  *
//*                                                                   *
//*PROCESS A 'RESET' PASSWORD:                                        *
//*     PSWD=123,456,789,ABC                                          *
//*                                                                   *
//*PROCESS A 'TEMPORARY' PASSWORD:                                    *
//*     PSWD=123,456,789,ABC                                          *
//*                                                                   *
//*REPORT PROCESSOR INFORMATION AND AUTHORIZATION:                    *
//*     LIST                                                          *
//*                                                                   *
//*********************************************************************
//APPLYPW  EXEC PGM=BLFSEC3B,PARM='PPP'        <<<===   PRODUCT CODE   
//*                                                                    
//STEPLIB  DD DSN=BMC.PRODUCT.LOAD,DISP=SHR    <=== BLFSEC3B LOADLIB   
//*                                                                    
//SYSLIB   DD DSN=<hilevel>.BMCPSWD,DISP=SHR   <=== PASSWORD LIBRARY   
//SYSPRINT DD SYSOUT=*,DCB=RECFM=FBA                                   
//SYSUDUMP DD SYSOUT=*                                                 
//*                                                                    
//SYSIN    DD *                                                        
       < PLACE APPROPRIATE CONTROL STATEMENTS HERE >                   
/*

The following table lists information that is required for the JCL.

JCL statements

JCL statement	Description
JOB	Varies, depending on your system
EXEC	Identifies the program (BLFSEC3B) and identifies a BMC product in the PARM keyword Replace PPP with the three-character product code (see Products that use the BMC Product Authorization utility).
STEPLIB DD	Identifies the load library in which BLFSEC3B resides This statement is optional if BLFSEC3B resides in LNKLST or is specified in JOBLIB.
SYSLIB DD	Identifies the password library Product authorization tables are stored and updated in this data set.
SYSPRINT DD	Enables the product to issue messages and output from the LIST control statement
SYSIN DD	Identifies the location of the control statements that define which actions the program should take For a description of these control statements, see Control statements and keywords.

Control statements and keywords

Some tasks require different input parameters, depending on the type of password that you are installing. The sample JCL shows various tasks that you can perform by using the batch version of product authorization. You must modify the JCL to include only the tasks that you want to perform.

The following syntax rules apply to the control statements:

Control statements can begin in any column.
Uppercase letters are required.
You must insert at least one blank space between individual keywords and data fields. Multiple blank spaces are acceptable.
To insert comments, type an asterisk (*) in column 1 of each line that contains the comment. Comments following keywords are not allowed.
You cannot specify the LIST keyword on the same line as PSWD, NEWCPUID, or OLDCPUID.

The following table describes the control statement keywords.

Control statement keywords

Keyword	Data	Explanation
PSWD	12-character password that is formatted as four fields of three characters each	Valid characters are alphanumeric (excluding letters I and O ). Valid special characters are =, +, and @. You can substitute the asterisk (*) for the 'at' sign (@) when @ is not available on the keyboard. You can enter the password with a comma or blank separating each of the four fields (123,456,789,ABC or 123 456 789 ABC) or as 12 continuous characters (123456789ABC).
NEWCPUID	Five-digit serial number, followed by a hyphen and a four-digit model number	The serial number and the model number must be hexadecimal characters and must be separated by a single hyphen.
OLDCPUID	Five-digit serial number, followed by a hyphen and a four-digit model number	The serial number and the model number must be hexadecimal characters and must be separated by a single hyphen.
LIST	Not applicable	This keyword prints a report that shows the contents of the product authorization tables and information about the processor on which the job ran.

Check return codes

After you run a batch job to perform product authorization, check the job’s return code to ensure that the job completed successfully.

The following table lists the return codes that the batch Production Authorization utility generates.

Return codes from the batch Product Authorization utility

Code	Explanation
0	All requests completed successfully. See the SYSPRINT output for messages about each operation.
4	A LIST was requested, but no tables were in the load library.
8	An error prevented completion of some or all of your requests. See the SYSPRINT output for messages about the error and any completed operations.