HPE Community
Operating System - HP-UX
1834209 Members
2287 Online
110066 Solutions
New Discussion

console ask for root pw change after converted to Trusted System

 
SOLVED
Go to solution
Victor_5
Trusted Contributor

‎05-13-2002 07:59 AM

‎05-13-2002 07:59 AM

console ask for root pw change after converted to Trusted System

I used SAM converted my 11.0 from non-trust to trust, I only turned on auditing and did nothing about others, after that, the console asked for root password change if I login from console for the first time, it was fine through telnet, why?

I thought for this kind of conversion, it is no need to change root pw. Correct?

0 Kudos
Reply
11 REPLIES 11
MANOJ SRIVASTAVA
Honored Contributor

‎05-13-2002 08:09 AM

‎05-13-2002 08:09 AM

Re: console ask for root pw change after converted to Trusted System

Hi Victor


The passwd lifetime is determined by the password againg policy or the security aging policy , you will need to change is as there must be some time limit specified for agiang.


Manoj Srivastava
0 Kudos
Reply
Victor_5
Trusted Contributor

‎05-13-2002 08:15 AM

‎05-13-2002 08:15 AM

Re: console ask for root pw change after converted to Trusted System

Hi Monoj:

As I said, I did not touch that area, left them default:

Time Between Password Changes: 20
Password Expiration Time: 100
Password Expiration Warning Time: 20
Password Lifetime: 150

Any other idea?
0 Kudos
Reply
S.K. Chan
Honored Contributor

‎05-13-2002 08:19 AM

‎05-13-2002 08:19 AM

Re: console ask for root pw change after converted to Trusted System

I'm guesing "console" needs to be reset/respawn .. though this is a bit unusual ..
Kill the "getty console" process and let "inittab" respawn it. Try the root login again. BTW how many characters are in your root password ?
0 Kudos
Reply
Helen French
Honored Contributor

‎05-13-2002 08:29 AM

‎05-13-2002 08:29 AM

Re: console ask for root pw change after converted to Trusted System

Hi Victor:

If the root password is set more that 8 characters, then the console may ask you to change it, after converting to trusted system.

Also make sure that you have installed all patches.

HTH,
Shiju
Life is a promise, fulfill it!
0 Kudos
Reply
MANOJ SRIVASTAVA
Honored Contributor

‎05-13-2002 08:37 AM

‎05-13-2002 08:37 AM

Re: console ask for root pw change after converted to Trusted System

Hi Victor

My root passwd was set to 8 chracters but still I got this error , I suggest you unconvert to UNTRUST by suing tsconvert -r and them change the againg policy and then convert to trusted again.

Manoj Srivastava
0 Kudos
Reply
Victor_5
Trusted Contributor

‎05-13-2002 08:54 AM

‎05-13-2002 08:54 AM

Re: console ask for root pw change after converted to Trusted System

S.K. Chan:

My previous password was 6 characters, the new one is 7 characters, so it should be ok, right?

Manoj:

After I convert back, where can I change the policy?

Thanks all!
0 Kudos
Reply
S.K. Chan
Honored Contributor

‎05-13-2002 09:35 AM

‎05-13-2002 09:35 AM

Re: console ask for root pw change after converted to Trusted System

Victor, your # password chars are ok. Can I re-cap my understanding again here .. you're saying after you convert to trusted, then you changed the root password and the changed was succesful. Now only when you try to go in at console directly as root it ask for the password change again, am I right?
0 Kudos
Reply
Victor_5
Trusted Contributor

‎05-13-2002 09:41 AM

‎05-13-2002 09:41 AM

Re: console ask for root pw change after converted to Trusted System

No!

I did everything from my pc through telnet, after I converted to trusted system, I did not change root password from my pc, but when I went to the console and login, the console asked me to change password, it is only once, after I changed it successfully, the system did not ask to change again.

But I am wondering why because it was unexpected.
0 Kudos
Reply
S.K. Chan
Honored Contributor

‎05-13-2002 10:00 AM

‎05-13-2002 10:00 AM

Solution

Re: console ask for root pw change after converted to Trusted System

I usually change my root passowrd first (8 or less chars) then I'll convert to trusted it never prompt for any root password change after conversion. In your case even though unexpected behavior, maybe it's just normal if the password ages to a certain time limit.
Reply
Victor_5
Trusted Contributor

‎05-13-2002 10:17 AM

‎05-13-2002 10:17 AM

Re: console ask for root pw change after converted to Trusted System

Changing root password first is a good idea, your explanation is more acceptable, thanks, S.K. Chan!
0 Kudos
Reply
Jeffrey Davis_1
Frequent Advisor

‎05-13-2002 12:45 PM

‎05-13-2002 12:45 PM

Re: console ask for root pw change after converted to Trusted System

Hi Victor,
As others have mentioned, when changing your system from a non-trusted one to a trusted system, if you have passwords greater then 8 characters the conversion process will truncate all passwords to 8 characters.
Likewise, part of the conversion process is to automatically age all passwords on the system once the system becomes trusted. This is to ensure a clean passwd database.
I have done this on all of my 11.00 systems, but don't remember if I read about this or had to experience it. I think I had to experience it!
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.