What criteria are used to determine if inactive profiles are included in the Enabled Inactive Profiles security check?
NetIQ Security Solutions for iSeries 8.0
NetIQ Vulnerability Manager 5.5
VigilEnt Security Agent for iSeries 7.5
NetIQ Vulnerability Manager 5.0
The Vulnerability Manager Enabled Inactive Profiles security check does not return all appropriate iSeries user profiles.
The Enabled Inactive Profiles security check does not display some inactive profiles.
The Enabled Inactive Profiles security check queries all iSeries user profiles that meet the following criteria:
- Have a status of *ENABLED
- Have a password
- Are not a Group Profile
The Enabled Inactive Profiles security check calculates the difference between the Previous Signon Date and current date. If the Previous Signon Date is blank, the security check uses the object?s Creation Date. The security check then compares the difference in days to the number of days specified in the security check, by default 60 days. If the difference is greater than the number of days specified for the security check, then the user profile is included in the report results.