Community
System Administration

Password complexity

 
SOLVED
Go to solution
Alexander Ketshvili
Advisor

‎06-13-2011 07:05 AM

‎06-13-2011 07:05 AM

Password complexity

Hi all
I have Hp-UX B.11.31
system is converted to trusted mode

the command # /usr/lbin/getprdef -m rstrpw
returns
rstrpw=NO

Actually I think complexity is enbaled, how change this param to Y? (needed for security audit)
The values in the file
/etc/default/security
UMASK=077
ABORT_LOGIN_ON_MISSING_HOMEDIR=1
NOLOGIN=1
MIN_PASSWORD_LENGTH=8
PASSWORD_MAXDAYS=90
PASSWORD_MINDAYS=7
PASSWORD_WARNDAYS=28
PASSWORD_HISTORY_DEPTH=5
NUMBER_OF_LOGINS_ALLOWED=0
BOOT_AUTH=1
AUDIT_FLAG=1
PASSWORD_MIN_SPECIAL_CHARS=1
PASSWORD_MIN_DIGIT_CHARS=1
PASSWORD_MIN_LOWER_CASE_CHARS=2
AUTH_MAXTRIES=6
ALLOW_NULL_PASSWORD=0

(all this changes done through Bustille)

Thanks for help
0 Kudos
Reply
2 REPLIES 2
Bill Hassell
Honored Contributor

‎06-13-2011 09:20 AM

‎06-13-2011 09:20 AM

Solution

Re: Password complexity

> how change this param to Y?

/usr/lbin/modprdef -m rstrpw=YES

Or use smh and select Auditing and Security (NOT the new version), then System Security Policies, then (gets tricky here) tab (not down-arrow) to User-Specified Password Attributes and select: Use Restriction Rules.

Then exit from smh and run /usr/lbin/getprdef -m rstrpw to read the new value.


Bill Hassell, sysadmin
Reply
Alexander Ketshvili
Advisor

‎06-13-2011 10:14 AM

‎06-13-2011 10:14 AM

Re: Password complexity

Thanks Bill. It's worked
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.