The AUTO-LOGOFF command can be used to automatically log off accounts and processes after they have been idle for a certain period of time, or when a modem line is disconnected. In addition, an O (off) code can be included in an account or user-ID to automatically log off users whenever a security violation of any kind is logged in the SECURITY-LOG file. The LOCKOUT command can be used to prevent users from logging on to the system after a certain number of invalid logon attempts.
To automatically logoff a process as a result of a security violation the character O is entered in line or attribute 9 of an Account Definition item or User-ID, that account or user will be automatically logged off the system whenever a security violation is logged in the SECURITY-LOG file. Automatic logoff will occur even if your system does not have a SECURITY-LOG file.
Automatic Logoff For Inactive Processes
You can specify that any account or process be automatically logged off if it has been idle for a certain period of time. This is done by executing the AUTO-LOGOFF command before the current logon session of the target process. (For best results, add AUTO-LOGOFF to the USER-COLD-START Proc in SYSPROG’s SYSPROG-PL file.) When the time is up, process control will be redirected to a Proc in the user’s Master Dictionary called @INPUT.TIMEOUT. This Proc, as initially supplied by Rocket, is as follows:
@INPUT.TIMEOUT 001 PQ 002 HOFF 003 P |
If required, you can modify this Proc by changing the item in the NEWAC file, or you can modify it for an individual account by changing the item in the account’s Master Dictionary.
NOTE |
AUTO-LOGOFF should always be set for communication lines. |
The syntax of the AUTO-LOGOFF command is:
Format
AUTO-LOGOFF target [seconds] [(options)] |
Parameter(s)
target |
An account or a process. To specify a process, enter the process number. You can also specify a range of processes by entering the range in the format (n-m). |
|
seconds |
Specifies the length of time in seconds that the account or process can be idle before it is automatically logged off. |
|
options |
These include: |
|
C |
Clears the automatic logoff for the specified target. |
|
D |
Enables the DTR signal monitor. |
If you want to see the current settings for any account or process, enter the following without seconds or options:
AUTO-LOGOFF target |
The AUTO-LOGOFF command can be included in the USER-COLD-START Proc to set system-wide auto- logoff parameters.
Automatic Logoff For Line Disconnects
You can use the D option of the AUTO-LOGOFF command described in the previous section to force an automatic logoff if a modem line is disconnected. The D option enables the system to monitor the incoming DTR signal for the specified target. When the monitor detects a loss of the DTR signal, process control will be redirected to a Proc in the user’s Master Dictionary called @LOST.DTR, which logs the process off.
Monitoring the incoming DTR signal requires that cabling be correctly set up. See the documentation for your modem for specific cabling requirements.
The @LOST.DTR Proc as initially supplied by Rocket is as follows:
@LOST.DTR 001 PQ 002 HOFF 003 P |
You can modify this Proc in the same way as you can the @INPUT.TIMEOUT Proc described earlier.
CAUTION |
Automatic logoff will interrupt and abort a program or Proc that is waiting at an input prompt, which could result in a corruption of the database. The process will be interrupted only if it is idle and waiting for input. Processing loops and the SLEEP command are not affected. |
See Also
Implementing MultiValue Security
Line 1: Using D Codes in Account Attributes
Lines 5 and 6: Using Retrieval and Update Codes
Line 7: Assigning, Changing and Deleting Account Passwords
Line 8: Using System Privilege Level Codes
Line 9: Using Account Definition Codes
Line 9: Restricting Access to TCL and Commands
Using the Accounting History File (ACC)