https://community.hpe.com/t5/operating-system-linux/some-clarification-on-password-aging-on-linux-servers/m-p/5244355#M52258 Hi Bullz,<BR /><BR />&gt;&gt; Please post your thoughts for removing password aging on linux servers?<BR />Refer the following links -<BR />* Linux turn OFF password expiration / aging<BR /><A href="http://www.cyberciti.biz/tips/setting-off-password-aging-expiration.html" target="_blank">http://www.cyberciti.biz/tips/setting-off-password-aging-expiration.html</A><BR /><BR />* 7 Examples to Manage Linux Password Expiration and Aging Using chage<BR /><A href="http://www.thegeekstuff.com/2009/04/chage-linux-password-expiration-and-aging/" target="_blank">http://www.thegeekstuff.com/2009/04/chage-linux-password-expiration-and-aging/</A><BR /><BR />Hope this helps.<BR /><BR />Regards,<BR />Murali Fri, 18 Jun 2010 13:00:14 GMT P Muralidhar Kini 2010-06-18T13:00:14Z https://community.hpe.com/t5/operating-system-linux/some-clarification-on-password-aging-on-linux-servers/m-p/5244353#M52256 Hi Crew,<BR /><BR />Some clarification on Password aging on Linux servers<BR /><BR />I have bunch of users, few are already expired, due to this, cron jobs are failing.<BR />Now, I have come to a decision that, all the non-admin users which are present on server should be set to non-expiry and inactive option need to be disabled.<BR /><BR />If I set a non-expiry for users (passwd –x -1 username), which are already expired, will it work properly after this?<BR /><BR />Also, can I use usermod –f -1 username for inactive? ( inactive = if the user not logged in for some amount of time )<BR /><BR />Please post your thoughts for removing password aging on linux servers?<BR /><BR />Passwd –x -1 username<BR />Usermod –f -1 username Fri, 18 Jun 2010 10:44:27 GMT https://community.hpe.com/t5/operating-system-linux/some-clarification-on-password-aging-on-linux-servers/m-p/5244353#M52256 bullz 2010-06-18T10:44:27Z https://community.hpe.com/t5/operating-system-linux/some-clarification-on-password-aging-on-linux-servers/m-p/5244354#M52257 chage -I -1 -m 0 -M 99999 -E -1 <USER><BR />chage -l <USER><BR /><BR />&gt;&gt;&gt; few are already expired, due to this, cron jobs are failing<BR /><BR />I did not know that cron jobs fails if the user account is expired.</USER></USER> Fri, 18 Jun 2010 12:54:12 GMT https://community.hpe.com/t5/operating-system-linux/some-clarification-on-password-aging-on-linux-servers/m-p/5244354#M52257 Ivan Ferreira 2010-06-18T12:54:12Z https://community.hpe.com/t5/operating-system-linux/some-clarification-on-password-aging-on-linux-servers/m-p/5244355#M52258 Hi Bullz,<BR /><BR />&gt;&gt; Please post your thoughts for removing password aging on linux servers?<BR />Refer the following links -<BR />* Linux turn OFF password expiration / aging<BR /><A href="http://www.cyberciti.biz/tips/setting-off-password-aging-expiration.html" target="_blank">http://www.cyberciti.biz/tips/setting-off-password-aging-expiration.html</A><BR /><BR />* 7 Examples to Manage Linux Password Expiration and Aging Using chage<BR /><A href="http://www.thegeekstuff.com/2009/04/chage-linux-password-expiration-and-aging/" target="_blank">http://www.thegeekstuff.com/2009/04/chage-linux-password-expiration-and-aging/</A><BR /><BR />Hope this helps.<BR /><BR />Regards,<BR />Murali Fri, 18 Jun 2010 13:00:14 GMT https://community.hpe.com/t5/operating-system-linux/some-clarification-on-password-aging-on-linux-servers/m-p/5244355#M52258 P Muralidhar Kini 2010-06-18T13:00:14Z https://community.hpe.com/t5/operating-system-linux/some-clarification-on-password-aging-on-linux-servers/m-p/5244356#M52259 Disabling password aging for *all* users because of cron jobs might be a massive overkill, because it's easy to identify the users that have cron jobs configured:<BR /><BR /># ls /var/spool/cron/crontabs/<BR /><BR />If a user has a cron job configured, there will be a file in this directory: the filename will be equal to the username.<BR /><BR />You should always use the "crontab" command to manipulate these files (or else the cron daemon may become confused), but viewing the directory and its files to identify cron job users is certainly possible.<BR /><BR />MK Fri, 18 Jun 2010 17:21:27 GMT https://community.hpe.com/t5/operating-system-linux/some-clarification-on-password-aging-on-linux-servers/m-p/5244356#M52259 Matti_Kurkela 2010-06-18T17:21:27Z https://community.hpe.com/t5/operating-system-linux/some-clarification-on-password-aging-on-linux-servers/m-p/5244357#M52260 Hi Bullz,<BR /><BR />&gt;&gt; Passwd -x -1 username<BR />The -x option is used to set the password lifetime in days.<BR />This however applies only to root.<BR /><BR />Check the following link for more details -<BR /><A href="http://linux.about.com/od/commands/l/blcmdl1_passwd.htm" target="_blank">http://linux.about.com/od/commands/l/blcmdl1_passwd.htm</A><BR /><BR />&gt;&gt; Usermod -f -1 username <BR /><BR />The -f option control when the account gets disabled, once the password gets<BR />expired. Value of 0 means disable immediately. Value of -1 means the feature<BR />is disabled. Note default value is -1.<BR /><BR />Check the following link for more details -<BR /><A href="http://linux.about.com/od/commands/l/blcmdl8_usermod.htm" target="_blank">http://linux.about.com/od/commands/l/blcmdl8_usermod.htm</A><BR /><BR />The links provided in my previous response should help you manage the<BR />password aging.<BR /><BR />Regards,<BR />Murali Sun, 20 Jun 2010 07:06:18 GMT https://community.hpe.com/t5/operating-system-linux/some-clarification-on-password-aging-on-linux-servers/m-p/5244357#M52260 P Muralidhar Kini 2010-06-20T07:06:18Z https://community.hpe.com/t5/operating-system-linux/some-clarification-on-password-aging-on-linux-servers/m-p/5244358#M52261 Thanks all Sun, 04 Jul 2010 20:49:45 GMT https://community.hpe.com/t5/operating-system-linux/some-clarification-on-password-aging-on-linux-servers/m-p/5244358#M52261 bullz 2010-07-04T20:49:45Z