HPE Community
Operating System - OpenVMS
1753665 Members
6099 Online
108799 Solutions
New Discussion

Re: Problem with ssh and preexpired password

 
SOLVED
Go to solution
Anup Kumar
Occasional Advisor

‎04-05-2006 07:37 PM

‎04-05-2006 07:37 PM

Re: Problem with ssh and preexpired password

Hi Folks,

I am running tcp/ip V5.4 with latest ECO 5 patchkit. I have got some accounts on server which are supposed to have null password which should not expire with password lifetime set to 30 days. I have seen once pwd lifetime is reached , ssh login prompts user to change the passsword but at the same time telnet login lets the user in with asking to change the password.

In my environment, Its mandatory to set pwd lifetime and we cannot set DISFORCE_PWD_CHANGE flag on accounts. Is there any workaround so that ssh login does not to change the password. I even tried resetting the account as

mos acccountname/nopass/nopwdexp

Still once the pwd lifetime is reached, ssh login prompts to change the passwword but tetlnet login no issues. Please advise ?
0 Kudos
Reply
JCG
New Member

‎01-09-2007 07:40 AM

‎01-09-2007 07:40 AM

Re: Problem with ssh and preexpired password

I got it to work!!
Edit the file:
SYS$SYSDEVICE:[000000.TCPIP$SSH.SSH2]SSHD2_CONFIG.

There is a line in this file that says this:
# AllowNonvmsLoginWithExpiredPw no
Change it to the following:
AllowNonvmsLoginWithExpiredPw yes

Also, if you are using PuTTY, you will need to use the latest "development snapshot", NOT the latest release, it doesn't support SSH-2 password expiry mechanisms.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.