HPE Community
Operating System - HP-UX
1834146 Members
1975 Online
110064 Solutions
New Discussion

Limit on maximum length of user selected password

 
SOLVED
Go to solution
Grant Stephens_1
New Member

‎05-24-2005 04:18 PM

‎05-24-2005 04:18 PM

Limit on maximum length of user selected password

I am running a trusted system on HPUX 11.11

Is there a parameter that restricts the length of a user selected password without writing some sort of wrapper around passwd?

/usr/lbin/modprdef -m maxpwln=8 only affects system generated passwords and is what Sam calls anyway.

Thanks
Grant Stephens
0 Kudos
Reply
5 REPLIES 5
unixdaddy
Trusted Contributor

‎05-25-2005 11:13 PM

‎05-25-2005 11:13 PM

Re: Limit on maximum length of user selected password

Grant,

you need to set up /etc/default/security with contents like the following:-

MIN_PASSWORD_LENGTH=8
PASSWORD_MIN_UPPER_CASE_CHARS=0
PASSWORD_MIN_LOWER_CASE_CHARS=1
PASSWORD_MIN_DIGIT_CHARS=1
PASSWORD_MIN_SPECIAL_CHAR=1
PASSWORD_HISTORY_DEPTH=10
NUMBER_OF_LOGINS_ALLOWED=3

Then in sam you might want to add to the password policy do the following:-

In SAM go to â Auditing and Securityâ , then â System Security Policiesâ
Select â Password Aging Policiesâ
Set â Password Agingâ to Enabled
Set â Time Between Password Changesâ to X days
Set â Password Expiration Timeâ to XX days
Set â Password Expiration Warning Timeâ to XX days
Set â Password Life Timeâ to XX days

you might want to exclude specific users from the policy:-

In SAM go to â Accounts for Users and Groupsâ , then â Usersâ
Select the user to be excluded.
Open menu item â Actionsâ and select â Modify Security Policiesâ
Select â Password Aging Policiesâ
Set â Password Agingâ to Disabled


Be careful when turn all this on, you may find that existing users password don't meet the new policy and therefore (i can't remember), but they may have trouble getting on to the machine after the change. You also need to bear in mind ftp accounts, because
0 Kudos
Reply
Muthukumar_5
Honored Contributor

‎05-25-2005 11:52 PM

‎05-25-2005 11:52 PM

Re: Limit on maximum length of user selected password

IF you use sam, then accounts and users and users in that list. Select password aging informations to that user.

you can use this,
http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=824746
for reference.



Easy to suggest when don't know about the problem!
0 Kudos
Reply
Tyler Easterling_1
Occasional Advisor

‎05-26-2005 05:32 AM

‎05-26-2005 05:32 AM

Re: Limit on maximum length of user selected password

Hi Grant,

Try using modprpw instead of modprdef, modprpw effects a current user and modprdef effects new users modprdef(ault).

Tyler
0 Kudos
Reply
Grant Stephens_1
New Member

‎05-29-2005 07:11 PM

‎05-29-2005 07:11 PM

Re: Limit on maximum length of user selected password

Thank you for your replies but it looks like there is no way to set the equivalent of a MAX_PASSWORD_LENGTH in /etc/default/security for user generated passwords in a trusted system.

Regards
Grant Stephens
0 Kudos
Reply
T G Manikandan
Honored Contributor

‎05-29-2005 07:35 PM

‎05-29-2005 07:35 PM

Solution

Re: Limit on maximum length of user selected password

The parameter max_password affects only passwords set by the system.

User can set anything..
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.