https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457668#M759841 Hi ,I am kannan .I have got one K class server. When i tried to make the system trusted,ther users whos are all there in the system is not able to logon to the system.It is giving the messages saying that"Account diable please contact accounts administrator and Terminal session disable.What could be the problm.Has anybody knows how the system to made as trusted with proper steps.<BR /><BR /><BR />Thanks<BR />kannan Wed, 25 Oct 2000 12:41:13 GMT bnkannan 2000-10-25T12:41:13Z https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457668#M759841 Hi ,I am kannan .I have got one K class server. When i tried to make the system trusted,ther users whos are all there in the system is not able to logon to the system.It is giving the messages saying that"Account diable please contact accounts administrator and Terminal session disable.What could be the problm.Has anybody knows how the system to made as trusted with proper steps.<BR /><BR /><BR />Thanks<BR />kannan Wed, 25 Oct 2000 12:41:13 GMT https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457668#M759841 bnkannan 2000-10-25T12:41:13Z https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457669#M759842 More information about trusted systems can be found at:<BR /><A href="http://docs.hp.com/hpux/onlinedocs/B2355-90121/B2355-90121.html" target="_blank">http://docs.hp.com/hpux/onlinedocs/B2355-90121/B2355-90121.html</A><BR /><BR />but what you describe is not a problem - that is the way it should behave. In order to meet the "trusted" status, certain rules must be met - those rules include such things as passwd length, validity of user accounts... etc. Now if any of your accounts do not meet these criteria, you (the admin) would have to enable them. It is a learning curve for your users (but every security measure should be!)<BR /><BR />do a search for trusted system in the forums you will find experiences of others. Wed, 25 Oct 2000 13:17:44 GMT https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457669#M759842 Kofi ARTHIABAH 2000-10-25T13:17:44Z https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457670#M759843 More information about trusted systems can be found at:<BR /><A href="http://docs.hp.com/hpux/onlinedocs/B2355-90121/B2355-90121.html" target="_blank">http://docs.hp.com/hpux/onlinedocs/B2355-90121/B2355-90121.html</A><BR /><BR />but what you describe is not a problem - that is the way it should behave. In order to meet the "trusted" status, certain rules must be met - those rules include such things as passwd length, validity of user accounts... etc. Now if any of your accounts do not meet these criteria, you (the admin) would have to enable them. It is a learning curve for your users (but every security measure should be!)<BR /><BR />do a search for trusted system in the forums you will find experiences of others.<BR /><BR />(I hope this post is not duplicated...) Wed, 25 Oct 2000 13:19:06 GMT https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457670#M759843 Kofi ARTHIABAH 2000-10-25T13:19:06Z https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457671#M759844 <BR />Hi Kannan!<BR /><BR />If a user cannot login after converting to a trusted system,<BR />check the length of the user password from the non-trusted system.<BR />If it was greater than 8 characters, then have them try using only 8<BR />of those characters and see if they can login. The default for<BR />password length for a trusted system is only 8 characters. So only<BR />the first 8 characters will be recognized once trusted (this is<BR />the same for non-trusted, see passwd(1)). If they want passwords<BR />longer than 8, then they will have to increase it using SAM.<BR /><BR />I hope this helps! Thu, 26 Oct 2000 22:12:11 GMT https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457671#M759844 Elizabeth_2 2000-10-26T22:12:11Z https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457672#M759845 <BR />One more thought... you could try:<BR /><BR />1. In SAM, under General User Account Policies, disable the<BR /> user's security policy referred to as: Maximum Period of<BR /> Inactivity on Account (days).<BR /><BR />2. Reactivate the account and have the user login.<BR /><BR /> This will add the u_suclog entry to the user's database file.<BR /><BR />3. Enable the user's Maximum Period of Inactivity on Account<BR /> (days) security policy.<BR /> Thu, 26 Oct 2000 22:18:48 GMT https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457672#M759845 Elizabeth_2 2000-10-26T22:18:48Z https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457673#M759846 <BR />One more thought... you could try:<BR /><BR />1. In SAM, under General User Account Policies, disable the<BR /> user's security policy referred to as: Maximum Period of<BR /> Inactivity on Account (days).<BR /><BR />2. Reactivate the account and have the user login.<BR /><BR /> This will add the u_suclog entry to the user's database file.<BR /><BR />3. Enable the user's Maximum Period of Inactivity on Account<BR /> (days) security policy.<BR /> Thu, 26 Oct 2000 22:19:02 GMT https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457673#M759846 Elizabeth_2 2000-10-26T22:19:02Z https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457674#M759847 <BR />One more thought... you could try:<BR /><BR />1. In SAM, under General User Account Policies, disable the<BR /> user's security policy referred to as: Maximum Period of<BR /> Inactivity on Account (days).<BR /><BR />2. Reactivate the account and have the user login.<BR /><BR /> This will add the u_suclog entry to the user's database file.<BR /><BR />3. Enable the user's Maximum Period of Inactivity on Account<BR /> (days) security policy.<BR /> Thu, 26 Oct 2000 22:19:19 GMT https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457674#M759847 Elizabeth_2 2000-10-26T22:19:19Z https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457675#M759848 <BR /><BR />One more thought... you could try:<BR /><BR />1. In SAM, under General User Account Policies, disable the<BR /> user's security policy referred to as: Maximum Period of<BR /> Inactivity on Account (days).<BR /><BR />2. Reactivate the account and have the user login.<BR /><BR /> This will add the u_suclog entry to the user's database file.<BR /><BR />3. Enable the user's Maximum Period of Inactivity on Account<BR /> (days) security policy.<BR /><BR /> Thu, 26 Oct 2000 22:19:42 GMT https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457675#M759848 Elizabeth_2 2000-10-26T22:19:42Z https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457676#M759849 <BR /><BR />One more thought... you could try:<BR /><BR />1. In SAM, under General User Account Policies, disable the<BR /> user's security policy referred to as: Maximum Period of<BR /> Inactivity on Account (days).<BR /><BR />2. Reactivate the account and have the user login.<BR /><BR /> This will add the u_suclog entry to the user's database file.<BR /><BR />3. Enable the user's Maximum Period of Inactivity on Account<BR /> (days) security policy.<BR /><BR /> Thu, 26 Oct 2000 22:19:52 GMT https://community.hpe.com/t5/operating-system-hp-ux/trusted-system-prblm/m-p/2457676#M759849 Elizabeth_2 2000-10-26T22:19:52Z