HPE Community
Operating System - HP-UX
1834926 Members
2795 Online
110071 Solutions
New Discussion

Re: PAM Authentication

 
Mike Marsh
New Member

‎07-17-2003 07:30 AM

‎07-17-2003 07:30 AM

PAM Authentication

Hello,

The organization I work for has recently changed the password strength checking requirements. I am looking for a tool or a PAM module that can test for these requirements.
1. Password expires in 90 days.
2. Minimum Length of 8 characters.
3. Must have 3 of the 4, Upper case, Lower Case, Special Character, and Number in teh password.
4. Failed Retries before lockout 5.
5. Password not in history 13.
6. Password Content Strength Tool(Not common words or Names in the password)

Any suggestions, third party tools or if something already exist from HP would be great.
Thanks for any help....
Heal the past, live the present, dream the future.
0 Kudos
Reply
4 REPLIES 4
Ken Hubnik_2
Honored Contributor

‎07-17-2003 07:33 AM

‎07-17-2003 07:33 AM

Re: PAM Authentication

Convert to a trusted sytem and all this will be available for you. Do a man on tsconvert
0 Kudos
Reply
Elena Leontieva
Esteemed Contributor

‎07-17-2003 08:05 AM

‎07-17-2003 08:05 AM

Re: PAM Authentication

You may also want to check out this product:

http://www.utexas.edu/cc/unix/software/npasswd/

Elena.
0 Kudos
Reply
Adrian Pillai_1
Occasional Advisor

‎07-23-2003 10:09 PM

‎07-23-2003 10:09 PM

Re: PAM Authentication

as said above, tsconvert will work.
Access Control by Computer Associations does that, and a lot more-- You can tell by the liscense costs... :)
0 Kudos
Reply
Steven E. Protter
Exalted Contributor

‎07-23-2003 10:30 PM

‎07-23-2003 10:30 PM

Re: PAM Authentication

http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/displayProductInfo.pl?productNumber=B6849AA

Its a security hardening tool.

Answer a question yes or no and it converts your system to trusted.

One problem though is that Trusted systems can't currently enforce caps requirements.

Currently Trusted systems don't enforce dictionary rules.

But there is a feature in there that lets the system assign the password. It will annoy the heck out of your users but will meet your requirements.

You can go trusted another way.

Sam
Auditing & Security

Audited Events

You will be prompted for conversion.

Check out System Security Policies there for what you can do.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.