https://community.hpe.com/t5/operating-system-linux/applying-password-policies-to-all-users/m-p/4109160#M30876 Under Linux password related utilities and config file(s) comes from shadow password suite.<BR /><BR />The /etc/login.defs file can be used to define specific configuration or settings.<BR /><BR />This normally contains:<BR /><BR />1 . PASS_MAX_DAYS : Maximum number of days a password may be used. If the password is older than this, a password change will be forced. <BR /><BR />2. PASS_MIN_DAYS : Minimum number of days allowed between password changes. Any password changes attempted sooner than this will be rejected.<BR /><BR />3. PASS_WARN_AGE : Number of days warning given before a password expires. A zero means warning is given only upon the day of expiration, a negative value means no warning is given. If not specified, no warning will be provided.<BR /><BR />A typical file would be like this (for your requirement):<BR /><BR />cat etc/login.defs<BR />PASS_MAX_DAYS 90<BR />PASS_MIN_DAYS 0<BR />PASS_WARN_AGE 14 Wed, 28 Nov 2007 14:55:18 GMT ~sesh 2007-11-28T14:55:18Z https://community.hpe.com/t5/operating-system-linux/applying-password-policies-to-all-users/m-p/4109159#M30875 Hi there --<BR /><BR />I recently replaced an existing server with a newer model, and I was able to move the users with their respective passwords onto the new server. The new server is running the Fedora Core 7 distribution.<BR /><BR />I want to establish a password policy that has password age at a maximum of ninety (90) days, a minimum number of days required between password changes set to zero (0) days, a warning to password expiration set at fourteen (14) days, and the number of inactivity days over the maximum days before the user's account is disabled also set to zero.<BR /><BR />How can I set up the above configuration, and also have it immediately applied to the existing user accounts? Thanks. Wed, 28 Nov 2007 14:13:57 GMT https://community.hpe.com/t5/operating-system-linux/applying-password-policies-to-all-users/m-p/4109159#M30875 Andrew Kaplan 2007-11-28T14:13:57Z https://community.hpe.com/t5/operating-system-linux/applying-password-policies-to-all-users/m-p/4109160#M30876 Under Linux password related utilities and config file(s) comes from shadow password suite.<BR /><BR />The /etc/login.defs file can be used to define specific configuration or settings.<BR /><BR />This normally contains:<BR /><BR />1 . PASS_MAX_DAYS : Maximum number of days a password may be used. If the password is older than this, a password change will be forced. <BR /><BR />2. PASS_MIN_DAYS : Minimum number of days allowed between password changes. Any password changes attempted sooner than this will be rejected.<BR /><BR />3. PASS_WARN_AGE : Number of days warning given before a password expires. A zero means warning is given only upon the day of expiration, a negative value means no warning is given. If not specified, no warning will be provided.<BR /><BR />A typical file would be like this (for your requirement):<BR /><BR />cat etc/login.defs<BR />PASS_MAX_DAYS 90<BR />PASS_MIN_DAYS 0<BR />PASS_WARN_AGE 14 Wed, 28 Nov 2007 14:55:18 GMT https://community.hpe.com/t5/operating-system-linux/applying-password-policies-to-all-users/m-p/4109160#M30876 ~sesh 2007-11-28T14:55:18Z https://community.hpe.com/t5/operating-system-linux/applying-password-policies-to-all-users/m-p/4109161#M30877 You should read this link:<BR /><BR /><A href="http://www.puschitz.com/SecuringLinux.shtml" target="_blank">http://www.puschitz.com/SecuringLinux.shtml</A><BR /><BR />Ensure that the parameters are changed in the /etc/login.defs and /etc/default/useradd files.<BR /><BR />You can use the "chage" command to apply the settings for existings users.<BR /><BR /> Wed, 28 Nov 2007 16:50:41 GMT https://community.hpe.com/t5/operating-system-linux/applying-password-policies-to-all-users/m-p/4109161#M30877 Ivan Ferreira 2007-11-28T16:50:41Z