When you select option 1 from the SECTOOLS menu, the system runs the CL command ANZDFTPWD (Analyze default passwords). Using the command an action can be specified to be taken against offending profiles. For example, you can specify that the profiles are to be disabled (ex. the user cannot sign on) or that you want to set the password to an expired state (i.e. the user must assign a new password next time they sign on).
If you want to schedule this report to run automatically each week, you can add an entry to your job scheduler to run the command ANZDFTPWD with the selected options, as in ANZDFTPWD ACTION(*PWDEXP). This will run the report for you and will set all default passwords to an expired state. For some systems, this is not a good idea. The default ACTION for the command is *NONE (recommended).