topic Re: reset password aging in Operating System - HP-UX

reset password aging

li_18 — Tue, 11 Jan 2005 08:49:24 GMT

Is that any way to reset password age to zero by command line?

That is in SAM, Accounts for Users and Groups -> Modify Security Policies -> [Password Aging Policies]
"Reset Password Age to Zero"

Thanks!

Re: reset password aging

Steven E. Protter — Tue, 11 Jan 2005 08:54:36 GMT

passwd -n -x

This resets aging.

example

passwd -n 7 -x 60 schmobagel

This resets the minimum time between changes to 7 days and the max to 60 days for user schmobagel

SEP

Re: reset password aging

RAC_1 — Tue, 11 Jan 2005 08:55:20 GMT

If system is not in trusted mode,

passwd -n 0 -x 0 "user_name"
man passwd for details.

Anil

Re: reset password aging

twang — Tue, 11 Jan 2005 09:07:08 GMT

you may take a look at the man page for hints,
# man -k passwd
the following is an example from man page,
Force user2 to establish a new password on the next login which will expire in 70 days and prohibit the user from changing the password until 7 days have transpired:
# passwd -r files -f -x 70 -n 7 user2

Re: reset password aging

HGN — Tue, 11 Jan 2005 09:27:42 GMT

Hi

If the system is in trusted mode you can change thro sam if not

use passwd -n 0 -x X The User ID
The number next to n is minimum days and value next to x is maximum days

Rgds

HGN

Re: reset password aging

Mark Greene_1 — Tue, 11 Jan 2005 09:46:59 GMT

If the system IS Trusted, you can do a global reset from the command line with this:

/usr/lbin/modprpw -V

This will reset all login IDs' last successful change date to the current date, essentially zeroing the exipration counter.

If you are running an 11i system, you can man modprpw for all the info. The command exists on 11.0 systems, but there's no man page included.

mark

Re: reset password aging

Rubinstein — Wed, 15 Aug 2018 10:54:21 GMT

I realize this is an ancient topic thread but it is the first thing that came up when I Googled for this answer, and I actually don't think any of the responses answered the actual question that was asked - resetting the password age rather than modifying the password aging policy.

The solution I found was to grep the password hash for the user out of /etc/shadow, and then to use "usermod -p '<hash>' '<username>'" to explicitly reset the password hash to this same value. This updated the password age field to current without modifying the user's password.