System Administration
cancel
Showing results for 
Search instead for 
Did you mean: 

password changes not enforced

unixadmin_1
Frequent Advisor

password changes not enforced

Can any one please sort out this issue.... Please reply relevant answer for this issue?

Password changes were still not enforced for all accounts. As a result,1% of the active accounts had not had their passwords changed for at least 180 days. These users were, in fact, not required to change their passwords. Passwords that are not changed frequently might be compromised over time and could then be used to gain unauthorised access
to the system functions and data.

Thank you,

3 REPLIES
F Verschuren
Esteemed Contributor

Re: password changes not enforced

If you have enforced passwd by default it is poseble that for one user it is not set on default but on a other value.

to check if it is on the default you can use:
[nlxanc01:/]# /usr/lbin/getprpw -m exptm [username]
exptm=-1
-1 is equal to default somtine els is not default (0 is turned of)
to get a list of all users
cat /etc/passwd | awk -f: '{ print $1 } ' | while read line
do
echo $line
/usr/lbin/getprpw -m exptm $line
echo
done
Steven E. Protter
Exalted Contributor

Re: password changes not enforced

Shalom,

Before taking drastic action, though forcing a password change would be a good thing, try setting a policy, or show us how you attempted to do so.

/etc/default/security

That is how you set it.

Take a look at the passwd command and you can run a simple program that forces a change next login.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
unixadmin_1
Frequent Advisor

Re: password changes not enforced

Thanks