Find Resources & Connect with members on topics that interest you.

Applications

Audit

Business Processes

Career Management

Cloud Computing/Virtualization

COBIT

Controls and Monitoring

Country

Databases

Fraud and Computer Crime

Governance and Management

Industry

Information Security

IT Service Management

Mobile/Wireless

Operating Systems

Privacy/Data Protection

Regulations

Risk

Standards

AI - Acquire and Implement

PO - Plan and Organize

DS - Deliver and Support

ME - Monitor and Evaluate

Application Controls

Process Controls

Please sign in to see your topics.

You must be logged in to join this group.

OS/400

Welcome to the OS/400 topic!

In this topic you may collaborate with your peers by participating in discussions, adding links and documents, and starting or contributing to wikis.

ISACA members can participate by clicking on the “Join this Community” button. You must be signed into the site. Set your alerts to be notified of new discussion activity within this community. Not an ISACA member? Join now!

 
This Topic Has:
112 Members
0 Online
3670 Visits

 Recent Discussions
Auditing CL Command Usage. Posted by Ian Cooke.
IBM Service Extension for i5OS V5R4 offering i... Posted by Ian Cooke.
State of IBM i Security Study 2013. Posted by Ian Cooke.

Community Leader

Ian Cooke

Ian Cooke

Title: IT Audit Manager

Points: 21706

NEW! Participate in Discussions Via Email. 

You can now respond to discussions by simply replying to the email alert. Just enable this feature in discussions on this topic. Learn more

Discussions: 26 total

Must be a Topic member to contribute
View All »
Auditing CL Command Usage
Auditing CL Command Usage http://www.securemyi.com/nl/articles/auditcmd.html
Ian Cooke | 5/9/2013 10:09:19 AM | COMMENTS(0)
IBM Service Extension for i5OS V5R4 offering is now available
IBM Service Extension for i5OS V5R4 offering is now available  http://www-01.ibm.com/common/ssi/cgi-bin/ssialias?subtype=ca&infotype=an&appname=iSource&supplier=897&letternum=ENUS613-004
Ian Cooke | 5/3/2013 4:03:43 AM | COMMENTS(0)
State of IBM i Security Study 2013
Webinar - State of IBM i Security Study 2013  https://powertech.webex.com/mw0306ld/mywebex/default.do?nomenu=true&siteurl=powertech&service=6&rnd=0.778562795715658&main_url=https%3A%2F%2Fpowertech.webex.com%2Fec0605ld%2Feventcenter%2Fevent%2FeventAction....
Ian Cooke | 4/24/2013 10:10:33 AM | COMMENTS(0)
Auditing AS/400
Hello there, I am starting an AS/400 Operating System audit in a couple of weeks time and this will be my first time to audit the AS/400 environment, so I really could use some help. Would really appreciate if you could provide suggestions, tips, help ...
Jeffery912 | 4/24/2013 2:25:01 AM | COMMENTS(1)
Happy Birthday!
The AS/400 (System i) is 25! http://ibmsystemsmag.blogs.com/you_and_i/2013/04/integration-and-ibm-i-at-25.html
Ian Cooke | 4/8/2013 3:17:51 AM | COMMENTS(0)
Automatic Encryption on the AS/400
Encryption on the AS/400 with no program changes (from version 7.1) http://web.townsendsecurity.com/webcast-automatic-encryption-with-fieldproc-ibm-sys-magazine http://www.itjungle.com/fhs/fhs050311-story01.html
Ian Cooke | 3/7/2013 10:34:48 AM | COMMENTS(0)
View All »

Documents & Publications: 1 total

Must be a Topic member to contribute
Books
A Practical Guide to IBM i and i5/OS Security and Compliance
Posted by Sunitha Kancherla 401 days ago

Events & Online Learning: 0 total

No Results Found

Journal Articles: 4 total

Volume 1, 2008
JOnline: Auditing IBM AS/400 and System i
by John Earl
Volume 2, 2002
Auditing and Security: AS/400, NT, UNIX, Networks and Disaster Recovery Plans
by Yusufali F. Musaji | Reviewed by Janine McMinn, CISA, FAIDC
Volume 2, 2002
A Beginner's Guide to Auditing the AS/400 Operating System
by Judith S. Bines, CISA, CBM, CCFSA, PA
Volume 5, 2000
HelpSource Q&A
by Fred L. Lilly, CISA, CPA

User Contributed External Links: 24 total

Wikis: 2 total

Blog Posts: 5 total

Must be a Topic member to view blog posts
22 Apr 2013
Payments to invalid recepients resulting in fraud
A recent publication in a local newspaper, indicated that an employee was charged with fraud with regards to claims of insurance payments that were lodged with the company were paid out to people who were not entitled to receive such payments. What po...
Posted By : Paulina.PNI | 1 comments
19 Oct 2012
Auditing OS/400 Password Controls using CAATs
We have already seen that OS/400 passwords are controlled using system values (http://www.isaca.org/Blogs/273340/Lists/Posts/ViewPost.aspx?ID=18). To refresh: QPWDEXPITV - The number of days for which a password is valid. QPWDMAXLEN - The maximum num...
Posted By : Ian Cooke | 0 comments
6 Oct 2012
Auditing OS/400 System Values using CAATs
According to the IBM System i (AS/400) security guide “system values represent the foundation upon which almost everything else is built. They allow you to customise many characteristics of your system. A group of system values is used to define system...
Posted By : Ian Cooke | 0 comments
29 Sep 2012
Auditing OS/400 Users using CAATs
In a typical AS/400 RPG / Cobol application access is provided through the users OS/400 profile. OS/400 users may be retrieved using the DSPUSRPRF command (see http://publib.boulder.ibm.com/infocenter/iseries/v7r1m0/index.jsp?topic=%2Fcl%2Fdspusrprf.ht...
Posted By : Ian Cooke | 0 comments
20 May 2012
Auditing OS/400 Passwords
On the AS/400 (System i) it is possible to audit for default passwords using the ANZDFTPWD command. A default password is defined as a password which is the same as the user profile. The command behaves slightly differently depending on the value of the...
Posted By : Ian Cooke | 0 comments
Report An Issue