HPE Community
Operating System - HP-UX
1834601 Members
3936 Online
110069 Solutions
New Discussion

changing password on Trusted Mode.

 
Chirag Parekh
Advisor

‎07-12-2004 10:47 PM

‎07-12-2004 10:47 PM

changing password on Trusted Mode.

Hi,

We have two HP-UX 11.11 servers running in Trusted mode. Both of them have the same security/password aging policies with a minimum password change time of 7 days on both. On one server I am able to change passwords within 2-3 days and am able to set it to something that I had recently used. On the other server it does not allow me to re-use a recently used password. Checked the /tcb/files/auth/system/default as well as the /tcb/files/auth/*/* files for that particular account on both servers and found everything to be identical. Can someone tell me what am I missing in terms of settings on either of the server so as not to allow re-use of recently used password?

Thanks.
0 Kudos
Reply
13 REPLIES 13
Bharat Katkar
Honored Contributor

‎07-12-2004 10:49 PM

‎07-12-2004 10:49 PM

Re: changing password on Trusted Mode.

HI Chirag,
Refer to the doc attached.
That should help.
Regards,
You need to know a lot to actually know how little you know
0 Kudos
Reply
Chirag Parekh
Advisor

‎07-12-2004 10:59 PM

‎07-12-2004 10:59 PM

Re: changing password on Trusted Mode.

Hi Bharat,

I went thru the document and looked at all the settings and couldn't find anything different on both the servers. Herewith I am attaching the /tcb/files/auth/*/* for user oracle from servers banff and mecca. On server banff I am able to re-use a recently used password.

Thanks.
0 Kudos
Reply
Bharat Katkar
Honored Contributor

‎07-12-2004 11:10 PM

‎07-12-2004 11:10 PM

Re: changing password on Trusted Mode.

Hi
Check this on both server and see if they are same.
#/usr/lbin/getprdef -m lftm

Regards,
You need to know a lot to actually know how little you know
0 Kudos
Reply
Chirag Parekh
Advisor

‎07-12-2004 11:30 PM

‎07-12-2004 11:30 PM

Re: changing password on Trusted Mode.

Checked on both servers and it's 0.

Thanks
0 Kudos
Reply
Franky_1
Respected Contributor

‎07-13-2004 01:06 AM

‎07-13-2004 01:06 AM

Re: changing password on Trusted Mode.

Hi Chiraq,

you can explicitly set the params on both machines with
/usr/lbin/modprdef
-exptm= or
-mintm=

HTH

Franky
Don't worry be happy
0 Kudos
Reply
Cheryl Griffin
Honored Contributor

‎07-13-2004 01:18 AM

‎07-13-2004 01:18 AM

Re: changing password on Trusted Mode.

I would check if patching is the same on both machines:
# swlist -l fileset |egrep -e "libc|libpam|libsec|ONC"
"Downtime is a Crime."
0 Kudos
Reply
Chirag Parekh
Advisor

‎07-13-2004 01:22 AM

‎07-13-2004 01:22 AM

Re: changing password on Trusted Mode.

Hi Cheryl,

Patching is the same on both servers.

Thanks.
0 Kudos
Reply
Darren Prior
Honored Contributor

‎07-13-2004 01:30 AM

‎07-13-2004 01:30 AM

Re: changing password on Trusted Mode.

Hi,

It sounds to me like you have /etc/default/security configured on one system with PASSWORD_HISTORY_DEPTH=n. This prevents the last n passwords being re-used. See man security for more info on this functionality.

regards,

Darren.
Calm down. It's only ones and zeros...
0 Kudos
Reply
Chirag Parekh
Advisor

‎07-13-2004 01:35 AM

‎07-13-2004 01:35 AM

Re: changing password on Trusted Mode.

Darren,

The Password_History_Depth on both the servers is set to 10.

Thanks.
0 Kudos
Reply
Chirag Parekh
Advisor

‎07-29-2004 01:46 PM

‎07-29-2004 01:46 PM

Re: changing password on Trusted Mode.

Still looking for a resolution to the problem?

Thanks.
0 Kudos
Reply
Chirag Parekh
Advisor

‎08-03-2004 09:14 PM

‎08-03-2004 09:14 PM

Re: changing password on Trusted Mode.

Someone had posted a reply on the 29th of July with an attachment about how to re-use an old password on a Trsuted mode. But I cannot see the reply now. Can someone post it again?

Thanks.
0 Kudos
Reply
Darren Prior
Honored Contributor

‎08-03-2004 09:24 PM

‎08-03-2004 09:24 PM

Re: changing password on Trusted Mode.

Hi,

I believe one of the other moderators may have deleted it; posting Knowledge Base documents is not allowed - they are only accessible if you have a software contract with HP.

regards,

Darren.

PS: I'll see if I can find the ref number for the doc, which is allowed to be posted.
Calm down. It's only ones and zeros...
0 Kudos
Reply
Darren Prior
Honored Contributor

‎08-03-2004 09:54 PM

‎08-03-2004 09:54 PM

Re: changing password on Trusted Mode.

Hi,

I've just checked - the only document I found on this subject is for HP internal use only so it wouldn't even be visible via the Knowledge Base.

regards,

Darren.
Calm down. It's only ones and zeros...
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.