HPE Community
Operating System - HP-UX
1833787 Members
2530 Online
110063 Solutions
New Discussion

Re: How to set minimum passworf length on a trusted system?

 
Kevin McNamara_1
Occasional Advisor

‎11-08-2006 09:43 AM

‎11-08-2006 09:43 AM

How to set minimum passworf length on a trusted system?

I need to change the minimum password length from the default 6 characters to 8 and the maximum to 10 characters. I believe this is done in the /tcb/files/auth/system/default file. Is the parameter that sets the default minimum password u_minlen? Also, is u_maxlen the parameter that sets the default maximum password length? Also, what is the process to make changes to these parameters?
0 Kudos
Reply
3 REPLIES 3
Rick Garland
Honored Contributor

‎11-08-2006 09:53 AM

‎11-08-2006 09:53 AM

Re: How to set minimum passworf length on a trusted system?

You have the options of using the /etc/default/security file and using PASSWD_LENGTH and/or you can use the /usr/sbin/modprdef command to set the maxpwln
0 Kudos
Reply
Jeff_Traigle
Honored Contributor

‎11-08-2006 09:54 AM

‎11-08-2006 09:54 AM

Re: How to set minimum passworf length on a trusted system?

Minimum password length is controlled by MIN_PASSWORD_LENGTH in /etc/default/security. See security(4) man page.

u_maxlen in /tcb/files/auth/system/default does control the default maximum length of passwords. Changing it and the other parameters is done with the modprdef command. Changes that pertain to individual users can be made with modprpw. See respective man pages for details.
--
Jeff Traigle
0 Kudos
Reply
Bill Hassell
Honored Contributor

‎11-08-2006 09:57 AM

‎11-08-2006 09:57 AM

Re: How to set minimum passworf length on a trusted system?

Yes, you can edit the default file but if you make a mistake, it will mess up all the global settings. Use SAM to avoid errors.

The other way is much simpler: create the file:

/etc/default/security

and add this line:

MIN_PASSWORD_LENGTH=10

spelled exactly as shown. Either way, the change is permanent but will not affect existing passwords. See the man page:

man security

NOTE: this applies to 11.00 and later. For 10.20, you'll have to use SAM or edit the /tcb file.


Bill Hassell, sysadmin
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.