HPE Community read-only access December 15, 2018
This is a maintenance upgrade. You will be able to read articles and posts, but not post or reply.
Hours:
Dec 15, 4:00 am to 10:00 am UTC
Dec 14, 10:00 pm CST to Dec 15, 4:00 am CST
Dec 14, 8:00 pm PST to Dec 15, 2:00 am PST
System Administration
cancel
Showing results for 
Search instead for 
Did you mean: 

implementing password aging on my 11.31 trusted servers

 
SOLVED
Go to solution
PamelaJThrasher
Regular Advisor

implementing password aging on my 11.31 trusted servers

Hello-
I am going to be implementing password aging on my 11.31 trusted servers. There are several system and application accounts that I do not want to have their passwords expire. I am planning to run the following command against the accounts whose passwords I do not want to expire:

/usr/lbin/modprpw -m mintm=0,exptm=0,expwarn=0,lftm=0,llog=0

Do I need to run this for the root account to keep my root password from expiring?

Thanks in advance
6 REPLIES
Steven E. Protter
Exalted Contributor
Solution

Re: implementing password aging on my 11.31 trusted servers

Shalom,

Easiest thing to do is run the sam replacement, smh, choose accounts and disable password aging.

You do need to run this command against root to prevent aging.

However that might cause you to fail a security audit.

Note also that trusted system is deprecated, will not be used in 11iv4 HP-UX. There are alternatives you might want to consider available on http://software.hp.com

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
PamelaJThrasher
Regular Advisor

Re: implementing password aging on my 11.31 trusted servers

Thank you for the great information.

If an password expires, will the account then also be locked? Or will it just prompt the user to change the password?
melvyn burnard
Honored Contributor

Re: implementing password aging on my 11.31 trusted servers

With 11iv3 you could also look at SMSE Standard Mode Security Extensions.
This allows individual security settings to be applied on a per user basis without going to Trusted mode.
My house is the bank's, my money the wife's, But my opinions belong to me, not HP!
Johnson Punniyalingam
Honored Contributor

Re: implementing password aging on my 11.31 trusted servers

>>If an password expires, will the account then also be locked? Or will it just prompt the user to change the password?<<

Yes, Your account will be locked.

You need enable the account, Than try login than only It will prompt the user to Change the password

Thkx,
Johnson
Problems are common to all, but attitude makes the difference
Johnson Punniyalingam
Honored Contributor

Re: implementing password aging on my 11.31 trusted servers

Do I need to run this for the root account to keep my root password from expiring?

Yes,

yo enable the locked account.

/usr/lbin/modprpw -k

Thanks,
Johnson
Problems are common to all, but attitude makes the difference
PamelaJThrasher
Regular Advisor

Re: implementing password aging on my 11.31 trusted servers

.