HPE Community read-only access December 15, 2018
This is a maintenance upgrade. You will be able to read articles and posts, but not post or reply.
Hours:
Dec 15, 4:00 am to 10:00 am UTC
Dec 14, 10:00 pm CST to Dec 15, 4:00 am CST
Dec 14, 8:00 pm PST to Dec 15, 2:00 am PST
System Administration
cancel
Showing results for 
Search instead for 
Did you mean: 

How to convert system into trusted host

 

How to convert system into trusted host

Hi,

As per IT security guidelines we are planning to
convert hp-ux systems into trusted hosts. for tighter password security.

can anybody help out

i need steps to be carried out for this conversion.

Sandeep.
5 REPLIES
likid0
Honored Contributor

Re: How to convert system into trusted host

Here you have some help:

http://www.hpuxtips.es/?q=node/126
Windows?, no thanks
Pete Randall
Outstanding Contributor

Re: How to convert system into trusted host

The most reliable method is to use SAM. SAM eliminates some of the pitfalls, like having all the passwords ending up expired after conversion.

Having said that, I should also mention that HP is moving away from trusted systems as of 11iV3. I would think twice before committing to a methodology which is "going away".


Pete

Pete
James R. Ferguson
Acclaimed Contributor

Re: How to convert system into trusted host

Hi:

You can use the 'pvconv' command to convert to a shadow pasword file --- the basis for HP-UX security in a current and future releases.

http://docs.hp.com/en/B3921-60631/pwconv.1M.html

As Pete noted, trusted systems are deprecated beginning with 11.31. In fact, they will not be supported in releases subsequent to that.

Regards!

...JRF...
Franky_1
Respected Contributor

Re: How to convert system into trusted host

Hi Sandeep,

you can use /usr/lbin/tsconvert to convert into trusted system (tsconvert -r to remove). Check with pwconv command to see if it's in trusted mode or not

Best regards

Franky
Don't worry be happy
Avinash20
Honored Contributor

Re: How to convert system into trusted host

Hi Sandeep !!
"Sytem needs to be Trusted as per IT security Guidelines"

## Are they looking for only password security (password field should not be visible in /etc/password) which is answered above or do they need any other features to be enabled

You could refer to

http://docs.hp.com/en/B2355-90950/ch08s08.html

This will help you in converting the system to Trusted !!
"Light travels faster than sound. That's why some people appear bright until you hear them speak."