HPE Community
Operating System - HP-UX
1836762 Members
2914 Online
110109 Solutions
New Discussion

Re: sam auditing of password changes???

 
SOLVED
Go to solution
kirk_11
Occasional Advisor

‎07-17-2003 03:24 AM

‎07-17-2003 03:24 AM

sam auditing of password changes???

Is it possible to have sam audit password changes?
don't follow me, I'm lost too...
0 Kudos
Reply
5 REPLIES 5
Pete Randall
Outstanding Contributor

‎07-17-2003 03:30 AM

‎07-17-2003 03:30 AM

Re: sam auditing of password changes???

Frankly, Kirk, I was unaware that SAM was capable of auditing anything - maybe I'll learn otherwise. You can customize SAM to perform specific things before and after adding/removing users (see Actions > Task Customization), but won't cover your password changes.


Pete


Pete
0 Kudos
Reply
kirk_11
Occasional Advisor

‎07-17-2003 03:33 AM

‎07-17-2003 03:33 AM

Re: sam auditing of password changes???

Maybe I should have asked if you can setup sam to log password changes...
don't follow me, I'm lost too...
0 Kudos
Reply
Pete Randall
Outstanding Contributor

‎07-17-2003 03:44 AM

‎07-17-2003 03:44 AM

Re: sam auditing of password changes???

Kirk,

It sounds like you control passwords? The users are not allowed to change their own? I think you need to manually log them. That's what I do. Of course if you have several sysadmins, this can become a nightmare - I have only myself. I tried, through SAM task customization, to log the initial password and got it to work but the password is already encrypted, so I still have to go back and put in the assigned password.

Sorry, not much help!


Pete


Pete
0 Kudos
Reply
Ollie R
Respected Contributor

‎07-17-2003 03:47 AM

‎07-17-2003 03:47 AM

Re: sam auditing of password changes???

Hi,

Try auditing code "024052", which is one of the ADMIN codes.

Ollie.
To err is human but to not award points is unforgivable
0 Kudos
Reply
Darren Prior
Honored Contributor

‎07-17-2003 05:46 AM

‎07-17-2003 05:46 AM

Solution

Re: sam auditing of password changes???

Hi,

If you have a trusted system, you could extract the date/time the password was last changed from the tcb file for a user, eg: /tcb/files/auth/u/user5

regards,

Darren.
Calm down. It's only ones and zeros...
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.