pdacunlck (Release consecutive certification failure account lock state)

Function

The pdacunlck command releases identifiers from consecutive certification failure account lock state authorization whose account lock period has not expired, or authorization identifiers that are in permanent consecutive certification failure account lock state.

When executed, the pdacunlck command sets to the null value the consecutive certification failure account lock date and time and the consecutive certification failure count for an authorization identifier if its consecutive certification failure account lock date and time in the SQL_USERS data dictionary table is not the null value.

Executor

HiRDB administrator

Format

 pdacunlck {authorization-identifier[,authorization-identifier]...|ALL}

Command arguments

Specifies the authorization identifiers whose consecutive certification failure account lock state is to be released. You can specify a maximum of 128 authorization identifiers.

Specifies that all authorization identifiers are to be released from consecutive certification failure account lock state.

A user attempting to execute the pdacunlck command with ALL specified cannot connect to HiRDB if the user privilege information buffer does not contain information about the CONNECT permissions and the consecutive certification failure account lock date and time are not the null value.

Rules

  1. The pdacunlck command can be executed only when HiRDB is running.
  2. The pdacunlck command must be executed at the server machine that contains the single server or where the system manager is located.
  3. The pdacunlck command cannot be executed if the data dictionary RDAREA is shut down.

Notes

  1. When an authorization identifier is specified, the command places that row of the SQL_USERS data dictionary table in the lock mode. When ALL is specified, the command locks the rows of the SQL_USERS data dictionary table for all users whose consecutive certification failure account lock date and time are not the null value.
  2. For the pdacunlck command, return code 0 indicates normal termination, and return code 8 indicates abnormal termination.
  3. If an authorization identifier is enclosed in double quotation marks ("), the command treats it as being case sensitive. If it is not enclosed in double quotation marks ("), the command treats it as all uppercase letters. If you are using sh (Bourne shell), csh (C shell), or ksh (Korn shell), you must enclose the entire set of authorization identifiers in apostrophes (').