Password system values: Password reuse cycle
The Password reuse cycle system value is also known as QPWDRQDDIF. You can use this system value to specify when a password can be used again.
Quick reference | |
---|---|
Location | From IBM® Navigator for i, select . Right-click on Password and click Properties, then select the Validation 1 tab. |
Special authority | All object (*ALLOBJ) and security administrator (*SECADM). |
Default value | After 1 password. |
Changes take effect | Immediately. |
Lockable | Yes.(See Lock function of security-related system values for details.) |
What can I do with this system value?
You can specify how many of the previous passwords are checked for a duplicate password. This option provides additional security by preventing users from specifying passwords that they have used previously. This option also prevents a user whose password has expired from changing the password and then immediately changing it back to the old password.
This system value has the following values:
- After 1 password (0)
- After 4 password (8)
- After 6 password (7)
- After 8 password (6)
- After 10 password (5)
- After 12 password (4)
- After 18 password (3)
- After 24 password (2)
- After 32 password (1)
The suggested setting is after 10 passwords (5). Select a value of 10 or more to prevent the use of repeated passwords. It is recommended to use a combination of the Password expiration value and the Password reuse cycle value to prevent a password from being reused for at least 6 months. For example, select 30 days for Password Expiration (days after last change) and After 10 passwords for Password re-use cycle. This means a typical user, who changes passwords when warned by the system, will not repeat a password for approximately 9 months.