HPE Community
Operating System - HP-UX
1753963 Members
7510 Online
108811 Solutions
New Discussion юеВ

Re: find out all disabled hp-ux users in a trusted system

 
SOLVED
Go to solution
vvsha
Frequent Advisor

тАО10-02-2007 08:01 PM

тАО10-02-2007 08:01 PM

find out all disabled hp-ux users in a trusted system

Is there any way to find out all disabled users in a trusted system.
I am using HP-UX B.11.00.
Please help me on this.
0 Kudos
Reply
11 REPLIES 11
J. Bravo
Respected Contributor

тАО10-02-2007 08:17 PM

тАО10-02-2007 08:17 PM

Re: find out all disabled hp-ux users in a trusted system

Hi:

SAM--> Accounts for users--> Users--> View--> Filter --> Activated-Matches-no

Regards;

J. Bravo.
0 Kudos
Reply
Aneesh Mohan
Honored Contributor

тАО10-02-2007 08:24 PM

тАО10-02-2007 08:24 PM

Solution

Re: find out all disabled hp-ux users in a trusted system

Hi Shabi,

/usr/lbin/getprpw loginname

if alock=YES then the account is disabled and alock=NO then the account is active


Aneesh
Reply
whiteknight
Honored Contributor

тАО10-02-2007 08:36 PM

тАО10-02-2007 08:36 PM

Re: find out all disabled hp-ux users in a trusted system

Execute the following command to identify the de-activated user accounts:

# /usr/lbin/getprpw -r -m lockout


Command Value ||Account Status
--------------------------------------
0001000 means Disabled because unsuccesful

0000010 means Administrative lockout

All Zeros means Active

WK
Problem never ends, you must know how to fix it
0 Kudos
Reply
Arturo Galbiati
Esteemed Contributor

тАО10-02-2007 09:09 PM

тАО10-02-2007 09:09 PM

Re: find out all disabled hp-ux users in a trusted system

Hi,
If I well rememeber users having ! in the second filed in /etc/passwd should be disables.
HTH,
Art
0 Kudos
Reply
vvsha
Frequent Advisor

тАО10-02-2007 10:03 PM

тАО10-02-2007 10:03 PM

Re: find out all disabled hp-ux users in a trusted system

Hi Aneesh,

Thank you very much for your great help.

Please let me know how to disable an account in trusted system.

I can use " modprpw -k " command to enable userid.
0 Kudos
Reply
Aneesh Mohan
Honored Contributor

тАО10-02-2007 10:28 PM

тАО10-02-2007 10:28 PM

Re: find out all disabled hp-ux users in a trusted system

Hi Shabi,

To disable/lock the account pls do

#passwd -l loginname

Aneesh
Reply
lawrenzo
Trusted Contributor

тАО10-02-2007 10:28 PM

тАО10-02-2007 10:28 PM

Re: find out all disabled hp-ux users in a trusted system

try

# passwd -l

check the man page as not too sure about the command on a trusted system.

Chris.
hello
0 Kudos
Reply
Bill Hassell
Honored Contributor

тАО10-02-2007 10:45 PM

тАО10-02-2007 10:45 PM

Re: find out all disabled hp-ux users in a trusted system

As mentioned, use passwd -l to lockout a user.

> If I well rememeber users having ! in the second filed in /etc/passwd should be disables.

Actually, ANY character string less than 13 characters long will disable an account for an unTrusted system. HP-UX typically uses the * character (unTrusted). For Trusted systems, the lockout codes are kept in a secure directory called /tcb.


Bill Hassell, sysadmin
0 Kudos
Reply
vvsha
Frequent Advisor

тАО10-02-2007 11:52 PM

тАО10-02-2007 11:52 PM

Re: find out all disabled hp-ux users in a trusted system

Hi Aneesh,

In my trusted system,

exptm(password expiration time) and
lftm(password lifetime) both values set to -1 . it means what?
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.