HPE Community read-only access December 15, 2018
This is a maintenance upgrade. You will be able to read articles and posts, but not post or reply.
Hours:
Dec 15, 4:00 am to 10:00 am UTC
Dec 14, 10:00 pm CST to Dec 15, 4:00 am CST
Dec 14, 8:00 pm PST to Dec 15, 2:00 am PST
cancel
Showing results for 
Search instead for 
Did you mean: 

lock a user

 
leelangco_1
Frequent Advisor

lock a user

how can i lock a user when he type a wrong password 3 times include root ?
and i do not want a trusted system
3 REPLIES
melvyn burnard
Honored Contributor

Re: lock a user

which version of HP-UX are you using?
There is the Standard Mode Security Extensions (SMSE) that are in 11iv3, allowing you to set things like that WITHOUT going to trusted system
My house is the bank's, my money the wife's, But my opinions belong to me, not HP!
Sunny123_1
Esteemed Contributor

Re: lock a user

Hi

Check out the following links

http://docs.hp.com/en/5991-8711/5991-8711.pdf

http://h20293.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=
StdModSecExt

And why you want to include root also??Remember if your root password locks you need to reboot the system.

Regards
Sunny

Mel Burslan
Honored Contributor

Re: lock a user

If you are willing to do a little leg work (or more appropriately finger work) you can write a script and call it from /etc/profile upon each user's login. In the script, you check the last 3 entries related to this user from the output of lastb command and compare the timestamp to the same from the last command's output. Decide if the last 3 entries were wrong password or not. if they all were wrong, issue the command

passwd -l

(to compare time stamps, I'd strongly suggest making use of caljd.sh script written by no other than Clay Stephenson of this very same forum. Just google the script name and you will find several sites to download it from)
________________________________
UNIX because I majored in cryptology...