HPE Community
Operating System - HP-UX
1833468 Members
2508 Online
110052 Solutions
New Discussion

passwd after conversion to trusted system

 
benseghir_1
Advisor

‎06-01-2005 01:28 AM

‎06-01-2005 01:28 AM

passwd after conversion to trusted system


hello,

I have read a docs about how to convert system to trusted system , but i didn't found in docs any warning about what happend for passwords after conversion,not history about the scripted passwords are moved from /etc/passwd to /tcp/files/auth database,but if i convert the system and i logout,i never have the possibilités to log in the system with the olds passwords.
please if there are anothers surprises, please inform me , or if you have link to docs about these problem , please transmit it ,because i want to convert my system
0 Kudos
Reply
5 REPLIES 5
Steven E. Protter
Exalted Contributor

‎06-01-2005 01:34 AM

‎06-01-2005 01:34 AM

Re: passwd after conversion to trusted system

The conversion to trusted system takes the encyrpted passwords out of /etc/passwd and replaces them with an asterisk.

It is still possible to log onto the system with the old password, because the encrypted password is moved to /tcb/files/auth

You have more flexibility by setting password depth and complexity rules with Sam or in /etc/default/security

You should run the following commands prior to conversion and take appropriate action for actual users:

pwck
grpck

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Pete Randall
Outstanding Contributor

‎06-01-2005 01:34 AM

‎06-01-2005 01:34 AM

Re: passwd after conversion to trusted system

That is why the recommended method for conversion is to use SAM. When you use SAM, it takes care of password expirations so you don't have problems.


Pete

Pete
0 Kudos
Reply
benseghir_1
Advisor

‎06-02-2005 01:24 AM

‎06-02-2005 01:24 AM

Re: passwd after conversion to trusted system

hello all,

thanks for your proposition,i do pwck /etc/passwd; grpck /etc/group, no error
and then i convert my system using sam
after convertion, always using sam i verifies that the aging passwords is desable,then i try to open another session using ssh but all the password are expired, in my current session i do
modprpw -v
modprpw -k user1 i had the error: user passwd file not found,even the file /tcb/files/auth/u/user1 exist
the conversion to trusted system is very inportant for my security policies, please can you help me

thanks in advance
0 Kudos
Reply
benseghir_1
Advisor

‎06-05-2005 02:45 AM

‎06-05-2005 02:45 AM

Re: passwd after conversion to trusted system

Dear all;

thanks for your help; i found the solution at this link http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=884835

thanks again
0 Kudos
Reply
benseghir_1
Advisor

‎06-05-2005 08:59 PM

‎06-05-2005 08:59 PM

Re: passwd after conversion to trusted system

hi,

the solution in my case: i set the parameter passwd to files in /etc/nsswitch.conf, after that i can connect to my system with all users and super user.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.