HPE Community
Operating System - HP-UX
1835961 Members
2009 Online
110088 Solutions
New Discussion

Re: Trusted Mode Password Expiration

 
Skip Ford
Advisor

‎05-14-2004 03:30 AM

‎05-14-2004 03:30 AM

Trusted Mode Password Expiration

I'm testing Trusted Mode operation on my test server. I convert via sam. I then run /usr/lbin/modprpw -V to prevent user passwords from expiring. When I tried to login via another user the old password didn't work. I also tried logging in as root and that didn't work.
I have all the latest patches for Trusted Mode operation.
Any ideas??
0 Kudos
Reply
7 REPLIES 7
Jeff Schussele
Honored Contributor

‎05-14-2004 04:01 AM

‎05-14-2004 04:01 AM

Re: Trusted Mode Password Expiration

Hi Skip,

When the system converts it will *only* convert the first 8 chars of any PW.

If you then enter the old PW - let's say it was 10 chars - it will evaluate all 10 & it will fail to match.

So enter *only* the first 8 chars & that should match. Then you should probably enter a new 8 char PW.

HTH,
Jeff
PERSEVERANCE -- Remember, whatever does not kill you only makes you stronger!
0 Kudos
Reply
Skip Ford
Advisor

‎05-14-2004 04:01 AM

‎05-14-2004 04:01 AM

Re: Trusted Mode Password Expiration

One more thing. When I tried to change the user's password as root while in Trusted Mode, I received, in addition to the last login info; the following message:

"Current user has no protected password entry"

0 Kudos
Reply
Skip Ford
Advisor

‎05-14-2004 04:02 AM

‎05-14-2004 04:02 AM

Re: Trusted Mode Password Expiration

The password for the user is only 6 characters.
0 Kudos
Reply
Jeff Schussele
Honored Contributor

‎05-14-2004 04:06 AM

‎05-14-2004 04:06 AM

Re: Trusted Mode Password Expiration

OK - check /tcb/files/auth/?/username entry for that user & see if the PW field is populated.

You may want to convert back
/usr/lbin/tsconvert -r
set new PWs & convert once again.

You could also run authck to verify the TCB integity.
Are you up to date on patches?

Rgds,
Jeff
PERSEVERANCE -- Remember, whatever does not kill you only makes you stronger!
0 Kudos
Reply
Skip Ford
Advisor

‎05-14-2004 04:13 AM

‎05-14-2004 04:13 AM

Re: Trusted Mode Password Expiration

Jeff:

I checked /tcb/files/auth/?/username and everything looked ok.

I think I'm up to date. I have PHCO_28176 and PHCO_27011 installed which I'm told are the latest.

I'll try changing passwords then try converting again.

I'll then try authck and see what happens.

Thanks and I'll get back.
0 Kudos
Reply
Skip Ford
Advisor

‎05-14-2004 04:21 AM

‎05-14-2004 04:21 AM

Re: Trusted Mode Password Expiration

I changed the user's password, converted to trusted mode. I then ran authck -a and received messages indicating that pts/tXX in Terminal Control database refers to a non-existent terminal, where XX are terminal numbers. I then tried to login as the user to no avail.
0 Kudos
Reply
Skip Ford
Advisor

‎05-14-2004 05:31 AM

‎05-14-2004 05:31 AM

Re: Trusted Mode Password Expiration

This gets better. I converted to trusted, added a new user, tried to login as that user to no avail, I then tried to change the password for the user as root and received the same message indicating the user had no Protected Password entry.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.