- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: password aging policies in HP-UX
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-31-2009 01:28 AM
тАО03-31-2009 01:28 AM
I want to view the password aging policies of the user such as minimum days, maximum days, warning days, date of last password change and password expire date.
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-31-2009 01:38 AM
тАО03-31-2009 01:38 AM
Re: password aging policies in HP-UX
Use this command.
#/usr/lbin/getprpw
Ganesh.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-31-2009 01:39 AM
тАО03-31-2009 01:39 AM
Re: password aging policies in HP-UX
See /etc/default/security
There is a man page and current settings can be viewed.
http://www.docs.hp.com/en/B2355-60103/security.4.html
http://docs.hp.com/en/B2355-60127/security.4.html
SEP
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-31-2009 01:43 AM
тАО03-31-2009 01:43 AM
Re: password aging policies in HP-UX
uid=101, bootpw=NO, audid=13, audflg=1, mintm=2, maxpwln=-1, exptm=30, lftm=40,
spwchg=Thu Nov 21 18:07:34 2002, upwchg=-1, acctexp=-1, llog=-1, expwarn=2, usrp
ick=DFT, syspnpw=DFT, rstrpw=DFT, nullpw=DFT, admnum=-1, syschpw=DFT, sysltpw=DF
T, timeod=-1, slogint=Thu Nov 21 16:08:10 2002, ulogint=Thu Nov 21 16:07:13 2002
, sloginy=-1, culogin=-1, uloginy=-1, umaxlntr=-1, alock=NO, lockout=0000100
Password Format Policies:
maxpwln ==> Maximum Password Length
nullpw ==> Allow Null Passwords
rstrpw ==> Use Restriction Rules
usrpick ==> User Specifies
syschpw ==> System Generates Character
sysltpw ==> System Generates Letters only
syspnpw ==> System Generates Pronounceable
Password Aging Policies
exptm ==> Password Expiration Time (days)
expwarn ==> Password Expiration Warning Time (days)
lftm ==> Password Life Time (days)
mintm ==> Time Between Password Changes (days)
NOTE: If password aging is disabled, all above parameters are set
to 0.
General User Account Policies
bootpw ==> Require Login Upon Boot To Single-User State
llog ==> Maximum Inactive Time (days)
umaxlntr ==> Unsuccessful login Tries Allowed
NOTE: If Lock Inactive Accounts is disabled, llog is set to 0.
Terminal Security Policies
dlylntr ==> Delay Between Login Tries (sec)
lntmout ==> Login Timeout Value (sec)
Ganesh.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-31-2009 01:49 AM
тАО03-31-2009 01:49 AM
Re: password aging policies in HP-UX
configuration file is /etc/defualt/security
u can do passwd length passwd aging also a number of thing in this file see the above posting also
thanks and regards
Sajjad Sahir
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-31-2009 01:50 AM
тАО03-31-2009 01:50 AM
Re: password aging policies in HP-UX
root@lgapps:/root > /usr/lbin/getprpw test
System is not trusted.
Pls help me.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-31-2009 01:52 AM
тАО03-31-2009 01:52 AM
Re: password aging policies in HP-UX
Dear Senthil
this is available in trusted system
modprpw, getprpw etc..
u system is not trusted.
u can do passwd aging a lot of things in /etc/default/security file see more parameters from there
thanks and regards
Sajjad Sahir
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-31-2009 01:54 AM
тАО03-31-2009 01:54 AM
Re: password aging policies in HP-UX
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-31-2009 02:02 AM
тАО03-31-2009 02:02 AM
Re: password aging policies in HP-UX
If your system is not converted as trusted, then you cannot use modprpw,getprpw commands.
But still you can set password policies on /etc/default/security file.
see man security
Many things you can do with security.
If you want to know existing password status use the below command
#passwd -sa -> for all users
#passwd -s
Ganesh.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-31-2009 02:33 AM
тАО03-31-2009 02:33 AM
Re: password aging policies in HP-UX
On non-trusted systems, general password policy is set by the week, not the day. That is why you had to run a special command, shown above to expire a user the next day.
The passwd -s output is still meaningful. After 7 days if not used, both accounts will be locked.
You have considerable flexibility in setting policy on a non-trusted sysetm.
/etc/default/security configuration will let you set general policy to meet your organizations guidelines.
Thanks,
Johnson