HPE Community read-only access December 15, 2018
This is a maintenance upgrade. You will be able to read articles and posts, but not post or reply.
Hours:
Dec 15, 4:00 am to 10:00 am UTC
Dec 14, 10:00 pm CST to Dec 15, 4:00 am CST
Dec 14, 8:00 pm PST to Dec 15, 2:00 am PST
System Administration
cancel
Showing results for 
Search instead for 
Did you mean: 

unlock/lock accounts with non-Trusted system

 
Kevin Liquori_1
Regular Advisor

unlock/lock accounts with non-Trusted system

All,
I'm configuring security settings on my first 11.31 system. I want to move away from Trusted System configuration as it's being phased out. With Trusted I was used to using modprpw to lock/unlock an account. With shadow password and Standard Mode Security Extensions it seems that there is no equivalent. I can run:

passwd -l to lock an account but this will replace the password entry with *.
passwd -d to unlock an account but this removes the password entry.

I'm looking for an option that will allow me to unlock the account and retain the previous password. Is this possible?

Thanks
2 REPLIES
Steven E. Protter
Exalted Contributor

Re: unlock/lock accounts with non-Trusted system

Shalom,

Might want to check out this link.

http://docs.hp.com/en/B2355-90121/ch02s06.html

There are options not present on the man page that are undocumented as far as I know.

I believe this setup is a security measure. If the account gets locked the password has to change.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Kevin Liquori_1
Regular Advisor

Re: unlock/lock accounts with non-Trusted system

Thanks, Steven. I've been looking at that manual this morning but haven't been able to find my answer there. Like you say, it may be by design.

Thanks,
Kevin