HPE Community read-only access December 15, 2018
This is a maintenance upgrade. You will be able to read articles and posts, but not post or reply.
Hours:
Dec 15, 4:00 am to 10:00 am UTC
Dec 14, 10:00 pm CST to Dec 15, 4:00 am CST
Dec 14, 8:00 pm PST to Dec 15, 2:00 am PST
cancel
Showing results for 
Search instead for 
Did you mean: 

Password complexity

 
SOLVED
Go to solution

Password complexity

Hi all
I have Hp-UX B.11.31
system is converted to trusted mode

the command # /usr/lbin/getprdef -m rstrpw
returns
rstrpw=NO

Actually I think complexity is enbaled, how change this param to Y? (needed for security audit)
The values in the file
/etc/default/security
UMASK=077
ABORT_LOGIN_ON_MISSING_HOMEDIR=1
NOLOGIN=1
MIN_PASSWORD_LENGTH=8
PASSWORD_MAXDAYS=90
PASSWORD_MINDAYS=7
PASSWORD_WARNDAYS=28
PASSWORD_HISTORY_DEPTH=5
NUMBER_OF_LOGINS_ALLOWED=0
BOOT_AUTH=1
AUDIT_FLAG=1
PASSWORD_MIN_SPECIAL_CHARS=1
PASSWORD_MIN_DIGIT_CHARS=1
PASSWORD_MIN_LOWER_CASE_CHARS=2
AUTH_MAXTRIES=6
ALLOW_NULL_PASSWORD=0

(all this changes done through Bustille)

Thanks for help
2 REPLIES
Bill Hassell
Honored Contributor
Solution

Re: Password complexity

> how change this param to Y?

/usr/lbin/modprdef -m rstrpw=YES

Or use smh and select Auditing and Security (NOT the new version), then System Security Policies, then (gets tricky here) tab (not down-arrow) to User-Specified Password Attributes and select: Use Restriction Rules.

Then exit from smh and run /usr/lbin/getprdef -m rstrpw to read the new value.


Bill Hassell, sysadmin

Re: Password complexity

Thanks Bill. It's worked