1745789 Members
3935 Online
108722 Solutions
New Discussion юеВ

/etc/default/security

 
dev44
Regular Advisor

/etc/default/security

Hi,

With a NON-trusted system, we want to setup password aging. We will edit the /etc/default/security file. What my question is, will this affect current users or just new users created? Like if we have a bunch of users with no expiry and we add an expiry of 90 days to /etc/default/security, will those users all expire at their next login?

Thanks,
Sally
whatever
2 REPLIES 2
sangilak
Trusted Contributor

Re: /etc/default/security

Hi,


The 'security' manpage reads the following:

"This value, if specified, is used by the authentication subsystem during the password change process in the case where aging restrictions do not already exist for the given user."

Source: http://nixdoc.net/man-pages/HP-UX/man4/security.4.html

So to me it seems that password aging will only be applied after a user's password has been changed...


Hope that helps...

sangilak
Pulse001
Regular Advisor

Re: /etc/default/security

Hi,

If you wish to enable password aging for existing users , you can edit /etc/shadow
e.g entry should look like below

casqa:gy76vCMHvwHLk:14623:7:91:7:::

where
7 ---> min days before a user can change password
91 ---> max days
7 ---> warn days

Then confirm it by running
' passwd -sa '

The output should look somthing like

casqa PS 01/14/10 7 91 7