HPE Community
Operating System - HP-UX
1833582 Members
4646 Online
110061 Solutions
New Discussion

conversion to trusted system (10.20) disables some accounts

 
SOLVED
Go to solution
B. Chapman
Frequent Advisor

‎10-24-2001 09:08 AM

‎10-24-2001 09:08 AM

conversion to trusted system (10.20) disables some accounts

Hello all,

Upon converting to Trusted System, some of our user accounts are automatically disabled. Is this due to:

-Password is NULL - and we've set the policy to NOT allow NULL passwords
-Password is easily guessable - and we've set the policy to "Use Restriction Rules" - which does a simple dictionary pass
-Account hasn't been used in over 30 days - and we've set the policy to "Lock Invactive Accounts" after 30 days of non-use.

So, which one is it? None of the above? All of the above?

Thanks in advance,
Ben Chapman.
bchapman@telcordia.com
0 Kudos
Reply
7 REPLIES 7
harry d brown jr
Honored Contributor

‎10-24-2001 09:30 AM

‎10-24-2001 09:30 AM

Re: conversion to trusted system (10.20) disables some accounts

From what I remember, it is all.

live free or die

harry
Live Free or Die
0 Kudos
Reply
harry d brown jr
Honored Contributor

‎10-24-2001 09:36 AM

‎10-24-2001 09:36 AM

Re: conversion to trusted system (10.20) disables some accounts

Also, all passwords will expire.
Live Free or Die
0 Kudos
Reply
B. Chapman
Frequent Advisor

‎10-24-2001 09:37 AM

‎10-24-2001 09:37 AM

Re: conversion to trusted system (10.20) disables some accounts

So, (I'd like to focus on the last item - the 30-day expiration item), when I convert to trusted system (or when I set the policy in SAM), if someone hasn't logged in for the last 30 days, then the ID will automatically be disabled at the time of conversion/policy-setting?

I've heard that the "30-day-clock" doesn't start until AFTER you convert/policy-set.

Yes? No? Correct? Incorrect info?

Again, thanks in advance,
Ben Chapman
0 Kudos
Reply
harry d brown jr
Honored Contributor

‎10-24-2001 10:41 AM

‎10-24-2001 10:41 AM

Solution

Re: conversion to trusted system (10.20) disables some accounts

I just completed a test, and you are correct that an account should not expire until after the conversion.


live free or die

harry
Live Free or Die
Reply
Wan Yue Gong
New Member

‎07-04-2004 01:43 PM

‎07-04-2004 01:43 PM

Re: conversion to trusted system (10.20) disables some accounts

Hi all,

Can I check with you:

- how can I confirm that my HP-UX B.11.00 U 9000/800 has been converted to Trusted System?

My company has such a security policy:
- to force password change upon password reset by administrator
- to change password on the next 90th day upon password update
- to warn password expiry 5 days before the password expires
- not to allow password change initiated by user within 7 days once the password is updated by user
- disable id which is inactive for >90days

password aging policy has been set as such in SAM:
- Time between password changes (days): 7
- Password expiration time (days): 90
- Password expiration warning time (days): 5
- Password life time (days): 90

My questions are:
- is the above being set correctly in SAM according to the policy?
- users are complaining that they don't get password expiry warning message from system, why is this so?
- users also complained that ids are being locked by system after 90 days upon password change, even if the id is active, why is this so?

Appreciate your assistance. Thanks in advance!

wanyue
wanyue.gong@aig.com
0 Kudos
Reply
Michael Tully
Honored Contributor

‎07-04-2004 02:03 PM

‎07-04-2004 02:03 PM

Re: conversion to trusted system (10.20) disables some accounts

please open a new posting.
Anyone for a Mutiny ?
0 Kudos
Reply
Wan Yue Gong
New Member

‎07-04-2004 02:09 PM

‎07-04-2004 02:09 PM

Re: conversion to trusted system (10.20) disables some accounts

Hi Mike,

A new message has been posted.

thanks,
wanyue
wanyue.gong@aig.com
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.