HPE Community read-only access December 15, 2018
This is a maintenance upgrade. You will be able to read articles and posts, but not post or reply.
Hours:
Dec 15, 4:00 am to 10:00 am UTC
Dec 14, 10:00 pm CST to Dec 15, 4:00 am CST
Dec 14, 8:00 pm PST to Dec 15, 2:00 am PST
Community
System Administration
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Password complexity

 
SOLVED
Go to solution
Alexander Ketshvili
Alexander Ketshvili
Advisor

‎06-13-2011 07:05 AM

‎06-13-2011 07:05 AM

Password complexity

Hi all
I have Hp-UX B.11.31
system is converted to trusted mode

the command # /usr/lbin/getprdef -m rstrpw
returns
rstrpw=NO

Actually I think complexity is enbaled, how change this param to Y? (needed for security audit)
The values in the file
/etc/default/security
UMASK=077
ABORT_LOGIN_ON_MISSING_HOMEDIR=1
NOLOGIN=1
MIN_PASSWORD_LENGTH=8
PASSWORD_MAXDAYS=90
PASSWORD_MINDAYS=7
PASSWORD_WARNDAYS=28
PASSWORD_HISTORY_DEPTH=5
NUMBER_OF_LOGINS_ALLOWED=0
BOOT_AUTH=1
AUDIT_FLAG=1
PASSWORD_MIN_SPECIAL_CHARS=1
PASSWORD_MIN_DIGIT_CHARS=1
PASSWORD_MIN_LOWER_CASE_CHARS=2
AUTH_MAXTRIES=6
ALLOW_NULL_PASSWORD=0

(all this changes done through Bustille)

Thanks for help
0 Kudos
Reply
2 REPLIES
Bill Hassell
Bill Hassell
Honored Contributor

‎06-13-2011 09:20 AM

‎06-13-2011 09:20 AM

Solution

Re: Password complexity

> how change this param to Y?

/usr/lbin/modprdef -m rstrpw=YES

Or use smh and select Auditing and Security (NOT the new version), then System Security Policies, then (gets tricky here) tab (not down-arrow) to User-Specified Password Attributes and select: Use Restriction Rules.

Then exit from smh and run /usr/lbin/getprdef -m rstrpw to read the new value.


Bill Hassell, sysadmin
Reply
Alexander Ketshvili
Alexander Ketshvili
Advisor

‎06-13-2011 10:14 AM

‎06-13-2011 10:14 AM

Re: Password complexity

Thanks Bill. It's worked
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.