CP (User Profile Changes) journal entries

This table provides the format of the CP (User Profile Changes) journal entries.

Start of change Information from this audit journal entry can be queried with the SYSTOOLS.AUDIT_JOURNAL_CP table function: AUDIT_JOURNAL_CP End of change

Table 1. CP (User Profile Changes) journal entries. QASYCPJE/J4/J5 Field Description File
Offset			Field	Format	Description
JE	J4	J5	Field	Format	Description
1	1	1			Heading fields common to all entry types. See Standard heading fields for audit journal entries QJORDJE5 Record Format (TYPE5),Standard heading fields for audit journal entries QJORDJE4 Record Format (TYPE4), and Standard heading fields for audit journal entries QJORDJE2 Record Format (*TYPE2) for field listing.
156	224	610	Entry Type	Char(1)	The type of entry. A Change to a user profile
157	225	611	User Profile Name	Char(10)	The name of the user profile that was changed.
167	235	621	Library Name	Char(10)	The name of the library.
177	245	631	Object Type	Char(8)	The type of object.
185	256	639	Command Name	Char(3)	The type of command used. CRT CRTUSRPRF CHG CHGUSRPRF or CHGEXPSCDE RST RSTUSRPRF DST QSECOFR password reset using DST RPA QSYRESPA API SQL QSYS2/SET_SERVER_SBS_ROUTING() Db2® for i procedure
188	256	642	Password Changed	Char(1)	Y Password changed
189	257	643	Password *NONE	Char(1)	Y Password is *NONE.
190	258	644	Password Expired	Char(1)	Y Password expired is YES N Password expired is NO
191	259	645	All Object Special Authority	Char(1)	Y Current *ALLOBJ special authority
192	260	646	Job Control Special Authority	Char(1)	Y Current *JOBCTL special authority
193	261	647	Save System Special Authority	Char(1)	Y Current *SAVSYS special authority
194	262	648	Security Administrator Special Authority	Char(1)	Y Current *SECADM special authority
195	263	649	Spool Control Special Authority	Char(1)	Y Current *SPLCTL special authority
196	264	650	Service Special Authority	Char(1)	Y Current *SERVICE special authority
197	265	651	Audit Special Authority	Char(1)	Y Current *AUDIT special authority
198	266	652	System Configuration Special Authority	Char(1)	Y Current *IOSYSCFG special authority
199	267		(Reserved Area)	Char(13)
		653	Previous All Object Special Authority	Char(1)	Y Previous *ALLOBJ special authority
		654	Previous Job Control Special Authority	Char(1)	Y Previous *JOBCTL special authority
		655	Previous Save System Special Authority	Char(1)	Y Previous *SAVSYS special authority
		656	Previous Security Administrator Special Authority	Char(1)	Y Previous *SECADM special authority
		657	Previous Spool Control Special Authority	Char(1)	Y Previous *SPLCTL special authority
		658	Previous Service Special Authority	Char(1)	Y Previous *SERVICE special authority
		659	Previous Audit Special Authority	Char(1)	Y Previous *AUDIT special authority
		660	Previous System Configuration Special Authority	Char(1)	Y Previous *IOSYSCFG special authority
		661	(Reserved Area)	Char(5)
212	280	666	Group Profile	Char(10)	The name of a group profile.
222	290	676	Owner	Char(10)	Owner of objects created as a member of a group profile.
232	300	686	Group Authority	Char(10)	Group profile authority.
242	310	696	Initial Program	Char(10)	The name of the user's initial program.
252	320	706	Initial Program Library	Char(10)	The name of the library where the initial program is found.
262	330	716	Initial Menu	Char(10)	The name of the user's initial menu.
272	340	726	Initial Menu Library	Char(10)	The name of the library where the initial menu is found.
282	350	736	Current Library	Char(10)	The name of the user's current library.
292	360	746	Limited Capabilities	Char(10)	The value of limited capabilities parameter.
302	370	756	User Class	Char(10)	The user class of the user.
312	380	766	Priority Limit	Char(1)	The value of the priority limit parameter.
313	381	767	Profile Status	Char(10)	User profile status.
323	391	777	Group Authority Type	Char(10)	The value of the GRPAUTTYP parameter.
333	401	787	Supplemental Group Profiles	Char(150)	The names of up to 15 supplemental group profiles for the user.
483	551	937	User Identification	Char(10)	The uid for the user.
493	561	947	Group Identification	Char(10)	The gid for the user.
503	571	957	Local Password Management	Char(10)	The value of the LCLPWDMGT parameter.
		967	Password Composition Conformance	Char(10)	Indicates whether the new password conforms to the password composition rules. PASSED Checked and conforms. SYSVAL Checked but does not conform because of a system value based rule. EXITPGM Checked but does not conform because of an exit program response. NONE Not checked; NONE was specified for the new password. NOCHECK Not checked; password was changed. This field has meaning only when the Password Changed field contains a Y.
		977	Password Expiration Interval	Char(7)	Specifies the value that the password expiration interval has been changed to. NOMAX No expiration interval. SYSVAL The system value QPWDEXPITV is used. number The size of the expiration interval in days.
		984	Block Password Change	Char(10)	Specifies the value that the block password change has been changed to. SYSVAL The system value QPWDCHGBLK is used. NONE No block period. 1-99 Blocked hours.
		994	User Expiration Date	Char(7)	Specifies the date when the user profile expires (CYYMMDD). The user profile is automatically disabled or deleted on this date.
		1001	Alternative Subsystem Name	Char(10)	The alternative subsystem that will be used for this user, instead of the default subsystem, whenever a connection is initiated to the server job specified in the IBM i Server Job Name field. This field will only contain data when command name (J5 offset 639) is SQL.
		1011	IBM i Server Job Name	Char(10)	When a connection to this server is initiated for this user it will be routed to the subsystem specified in the Alternative Subsystem Name field. To understand the Server Job Name mapping to server names and the default subsystem use, see Server table. This field will only contain data when command name (J5 offset 639) is SQL.
		1021	Assistance Level	Char(10)	The user interface that will be used. SYSVAL The system value, QASTLVL, is used to determine the user interface that will be used. BASIC The Operational Assistant user interface is used. INTERMED The system interface is used. ADVANCED The expert system interface is used.
		1031	Special Environment	Char(10)	The special environment in which the user operates after signing on. SYSVAL The system value, QSPCENV, is used to determine the system environment in which the user operates after signing on the system. NONE The user operates in the IBM i system environment after signing on the system. *S36 The user operates in the System/36 environment after signing on the system.
		1041	Display Signon Information	Char(10)	Indicates if the sign-on information display is shown. SYSVAL The system value, QDSPSGNINF, is used to determine whether the sign-on information display is shown. NO The sign-on information display is not shown. *YES The sign-on information display is shown.
		1051	Limit Device Sessions	Char(10)	The number of device sessions allowed for a user is limited. SYSVAL The system value, QLMTDEVSSN, is used to determine whether the user is limited to a specific number of device sessions. NO The user is not limited to a specific number of device sessions. YES The user is limited to a single device session. 0 The user is not limited to a specific number of device sessions. This value has the same meaning as NO. 1 The user is no limited to a single device sessions. This value has the same meaning as *YES. 2-9 The user is limited to the specified number of device sessions.
		1061	Keyboard Buffering	Char(10)	The keyboard buffering value to be used when a job is initialized for this user profile. SYSVAL The system value, QKBDBUF, is used to determine the keyboard buffering value. NO The type-ahead feature and attention key buffering option are not active. TYPEAHEAD The type-ahead feature is active, but the attention key buffering option is not. YES The type-ahead feature and attention key buffering option are active.
		1071	Maximum Allowed Storage	Char(20)	The amount of auxiliary storage (in kilobytes) assigned to store permanent objects owned by this user profile in the system auxiliary storage pool (ASP) and on all the basic ASPs combined. In addition, this value also controls the maximum amount of auxiliary storage that can be used to store permanent objects owned by this user profile on each Independent ASP (IASP).
		1091	Job Description	Char(10)	The job description used for jobs that start through subsystem work station entries whose job description parameter values indicate the user JOBD(*USRPRF).
		1101	Job Description Library	Char(10)	The name of the library where the job description is found.
		1111	Accounting Code	Char(15)	The accounting code that is associated with this user profile or the value listed below. *BLANK An accounting code of 15 blanks is assigned to this user profile.
		1126	Document Password Changed	Char(1)	Indicates if the document password has been changed. Y Document password changed.
		1127	Document Password *NONE	Char(1)	Indicates if the document password is NONE. Y Document password is NONE.
		1128	Message Queue	Char(10)	The message queue to which messages are sent or the value listed below. *USRPRF A message queue with the same name as the user profile is used as the message queue for this user. The message queue is located in the QUSRSYS library.
		1138	Message Queue Library	Char(10)	The name of the library where the message queue is found.
		1148	Delivery	Char(10)	How messages sent to the message queue for this user are to be delivered. NOTIFY The job to which the message queue is assigned is notified when a message arrives at the message queue. HOLD The messages are held in the message queue until they are requested by the user or program. BREAK The job to which the message queue is assigned is interrupted when a message arrives at the message queue. DFT The default reply to the inquiry message is sent.
		1158	Severity Code Filter	Char(2)	The lowest severity code that a message can have and still be delivered to a user in break or notify mode. 00-99
		1160	Print Device	Char(10)	The default printer device for this user or one of the values listed below. WRKSTN The printer assigned to the user's work station is used. SYSVAL The system value, QPRTDEV, is used to determine the printer device.
		1170	Output Queue	Char(10)	The output queue to be used by this user profile or one of the values listed below. WRKSTN The output queue assigned to the user's work station is used. DEV The output queue associated with the printer specified for the Printer Device is used.
		1180	Output Queue Library	Char(10)	The name of the library where the output queue is found.
		1190	Attention Program	Char(10)	The program to be used as the Attention (ATTN) key handling program for this user or one of the values listed below. SYSVAL The system value, QATNPGM, is used to determine the ATTN key handling program. NONE No ATTN key handling program is used by this user. *ASSIST The Operational Assistant ATTN key handling program, QEZMAIN, is used.
		1200	Attention Program Library	Char(10)	The name of the library where the ATTN program is found.
		1210	Sort Sequence	Char(10)	The sort sequence table to be used for string comparisons for this user profile or one of the values listed below. SYSVAL The system value, QSRTSEQ, is used to determine the sort sequence table. HEX A sort sequence table is not used. The hexadecimal values of the characters are used to determine the sort sequence. LANGIDUNQ A unique-weight sort table is used. LANGIDSHR A shared-weight sort table is used.
		1220	Sort Sequence Library	Char(10)	The name of the library where the sort sequence table is found.
		1230	Language ID	Char(10)	The language identifier to be used for this user profile or the value listed below. *SYSVAL The system value, QLANGID, is used to determine the language identifier.
		1240	Country or Region ID	Char(10)	The country or region identifier to be used for this user profile or the value listed below. *SYSVAL The system value, QCNTRYID, is used to determine the country or region ID.
		1250	CCSID	Binary(5)	The coded character set identifier to be used for this user profile.
		1254	Character Identifier Control	Char(10)	The character identifier control (CHRIDCTL) for the job. SYSVAL The system value, QCHRIDCTL, is used to determine the CHRIDCTL for the job. DEVD Performs the same function as it does on the CHRID parameter for display files, printer files, and panel groups. *JOBCCSID Performs the same function as it does on the CHRID parameter for display files, printer files, and panel groups.
		1264	Locale Job Attributes	Char(60)	The job attributes that are to be taken from the locale when the job is initiated. This field can contain up to six char(10) values. SYSVAL The system value, QSETJOBATR, is used to determine which job attributes are taken from the locale. NONE No job attributes are taken from the locale. CCSID The coded character set identifier from the locale is used. DATFMT The date format from the locale is used. DATSEP The date separator from the locale is used. DECFMT The decimal format from the locale is used. SRTSEQ The sort sequence from the locale is used. TIMSEP The time separator from the locale is used.
		1324	User Options	Char(70)	The level of help information detail to be shown and the default function of the Page Up and Page Down keys. This field can contain up to seven char(10) values. NONE Detailed information is not shown. CLKWD Parameter keywords are shown instead of the possible parameter values when a control language (CL) command is prompted. EXPERT More detailed information is shown when the user is performing display and edit options to define or change the system. ROLLKEY The actions of the Page Up and Page Down keys are reversed. NOSTSMSG Status messages are not displayed when sent to the user. STSMSG Status messages are displayed when sent to the user. HLPFULL Help text is shown on a full display rather than in a window. PRTMSG A message is sent to this user's message queue when a spooled file for this user is printed or held by the printer writer.
		1394	EIM Identifier	Char(128)	Enterprise Identity Mapping (EIM) identifier name or the value listed below. *USRPRF The name of the EIM identifier is the same name as the user profile.
		1522	EIM Association Type	Char(10)	EIM association type. TARGET Target association. SOURCE Source association. TGTSRC Target and source associations. ADMIN Administrative association. *ALL All association types.
		1532	EIM Association Action	Char(10)	EIM association action. REPLACE Associations of the specified type will be removed from all EIM identifiers that have an association for this user profile and local EIM registry. A new association will be added to the specified EIM identifier. ADD Add an association. *REMOVE Remove an association.
		1542	Create EIM Identifier	Char(12)	Indicates whether the EIM identifier should be created if it does not exist. NOCRTEIMID EIM identifier does not get created. CRTEIMID EIM identifier gets created if it does not exist.
		1554	User Expiration Action	Char(3)	The action performed on the profile when it expires. This value is always DSB when using the CRTUSRPRF and CHGUSRPRF commands. When using the CHGEXPSCDE command, this value is one of the value listed below. DSB The profile is disabled when it expires. DLT The profile is deleted when it expires.
		1557	Owned Object Option Value	Char(1)	The type of operation performed on the objects owned by the expiring profile when the user expiration action (J5 offset 1554) is DLT. The owned object option value is specified on the OWNOBJOPT parameter of the CHGEXPSCDE ACTION(DELETE) command. N NODLT - The owned objects for the user profile are not changed, and the user profile is not deleted if the user owns any objects. D DLT - The owned objects for the user profile are deleted. The user profile is deleted if the deletion of all owned objects is successful. C CHGOWN - The owned objects for the user profile have ownership transferred to the new owner user profile. The user profile is deleted if the transfer of all owned objects is successful.
		1558	Owned Object Option New Owner	Char(10)	The profile that will own all of the objects owned by the expiring profile. This field will only contain data when the owned object option value (J5 offset 1557) is C.
		1568	Primary Group Option Value	Char(1)	The type of operation performed on the objects that have the expiring user profile as their primary group when the user expiration action (J5 offset 1554) is DLT. The primary group option value is specified on the PGPOPT parameter of the CHGEXPSCDE ACTION(DELETE) command. N NOCHG - The objects the user profile is the primary group for do not change, and the user profile is not deleted if the user is the primary group for any objects. C *CHGPGP - The objects the user profile is the primary group for are transferred to the new primary group user profile. The user profile is deleted if the transfer of all objects is successful.
		1569	Primary Group Option New Primary Group	Char(10)	The profile that will become the new primary group of the objects for which the expiring profile is the primary group. This field will only contain data when the primary group option value (J5 offset 1568) is C. This field may contain the value listed below. *NONE All of the objects for which the expiring user is the primary group will no longer have a primary group.
		1579	Primary Group Option New Primary Group Authority	Char(1)	The authority the new primary group has to the object. This field will only contain data when the primary group option value (J5 offset 1568) is C and the new primary group (J5 offset 1569) is not NONE. O OLDPGP - The new primary group has the same authority to the object as the old primary group. P PRIVATE - The new primary group has the same authority to the object as its private authority to the object was. A ALL - The new primary group has ALL authority to the object. C CHANGE - The new primary group has CHANGE authority to the object. U USE - The new primary group has USE authority to the object. E EXCLUDE - The new primary group has *EXCLUDE authority to the object.
		1580	(Reserved Area)	Char(26)
		1606	Home Directory CCSID	Binary(5)	The coded character set identifier for the home directory.
		1610	Home Directory Length	Binary(4)	Length of the home directory.
		1612	Home Directory¹	Char(5002)	Path name of the home directory or the value listed below. *USRPRF The home directory assigned to the user will be /home/USRPRF, where USRPRF is the name of the user profile. For this value, the length will be 7 and the CCSID will be 37.
		6614	Locale CCSID	Binary(5)	The coded character set identifier for the locale.
		6618	Locale Length	Binary(4)	Length of the locale.
		6620	Locale¹	Char(5002)	Path name of the locale or one of the values listed below. SYSVAL The system value, QLOCALE, is used to determine the locale path name to be assigned to this user. For this value, the length will be 7 and the CCSID will be 37. NONE No locale path name is assigned to this user. For this value, the length will be 5 and the CCSID will be 37. C The C locale path name is assigned to this user. For this value, the length will be 2 and the CCSID will be 37. POSIX The POSIX locale path name is assigned to this user. For this value, the length will be 6 and the CCSID will be 37.
¹ This is a variable length field. The first two bytes contain the length of the path name.