Activating passwordpreprompt support

To provide additional security to the installation by requiring the user to provide both the user ID and password before allowing any additional access, follow these steps:
  1. Set the PASSWORDPREPROMPT parameter, on the LOGON statement in the SYS1.PARMLIB member of IKJTSOxx, to ON.
  2. Use the MVS™ SET IKJTSO=xx or TSO/E PARMLIB UPDATE(xx) command to update the system setting.
This forces the user to provide both the user ID and the password before further processing can occur. If either item is incorrect, then message USERID OR PASSWORD IS INCORRECT OR NOT AUTHORIZED is issued. If a passticket is used in place of a password it will be accepted, but the user's password will not be able to be changed during this logon.
Note: TSO/E Logon Exits may need to be updated before activating PASSWORDPREPROMPT. Exit processing that affects the TSO/E user ID or password may not work as expected.
Note: Once activated, users defined to UADS and not RACF will not be able to log on unless RACF is not active.