Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Change password to blank password
Operating Systems AIX Change password to blank password Post 302772457 by MichaelFelt on Monday 25th of February 2013 05:19:56 PM
Old 02-25-2013
If the login is failing because you need a passwordless login by a script, and the script is failing - it is probably because the ADMCHG flag is still set.

Note: passwordless is not recommended. Use the following at your own (companies) risk!

Code:
michael@x054:[/]pwdadm test0001
Changing password for "test0001"
test0001's New password: 

3004-602 The required password characteristics are:
        a maximum of 8 repeated characters.
        a minimum of 4 characters not found in old password.
        a minimum of 2 alphabetic characters.
        a minimum of 2 non-alphabetic characters.
        a minimum of 8 characters in length.


3004-603 Your password must have:
        a minimum of 4 characters not found in old password.
        a minimum of 2 non-alphabetic characters.
        a minimum of 8 characters in length.
test0001's New password: 
Enter the new password again:
michael@x054:[/]pwdadm -q test0001
test0001: 
        lastupdate = 1361830098
        flags = ADMCHG


michael@x054:[/]grep -p test0001 /etc/security/passwd 
test0001:
        password = {ssha512}06$ssCPpi0nCu7juMBJ$JyZKPfkmLl0Y.7bgLbVQIw1V.flPaptjEiUXWVpbBPC6Khj9kcprkae4Xd9FYqItjaEPY7kA7lULiVeHS4zl..
        lastupdate = 1361830098
        flags = ADMCHG

michael@x054:[/]
michael@x054:[/]pwdadm -f NOCHECK test0001
michael@x054:[/]pwdadm -q test0001
test0001: 
        lastupdate = 1361830098
        flags = NOCHECK

michael@x054:[/]grep -p test0001 /etc/security/passwd
test0001:
        password = {ssha512}06$ssCPpi0nCu7juMBJ$JyZKPfkmLl0Y.7bgLbVQIw1V.flPaptjEiUXWVpbBPC6Khj9kcprkae4Xd9FYqItjaEPY7kA7lULiVeHS4zl..
        lastupdate = 1361830098
        flags = NOCHECK

michael@x054:[/]pwdadm test0001
Changing password for "test0001"
test0001's New password: 
Setting "test0001's" password to NULL.
michael@x054:[/]grep -p test0001 /etc/security/passwd
test0001:
        password =                                                                                                                    
        lastupdate = 1361830487
        flags = NOCHECK,ADMCHG

michael@x054:[/]pwdadm -f NOCHECK test0001           
michael@x054:[/]grep -p test0001 /etc/security/passwd
test0001:
        password =                                                                                                                    
        lastupdate = 1361830487
        flags = NOCHECK       
michael@x054:[/]

In short, you need pwdadm -f NOCHECK username to disable password checks to be sure you can enter a NULL password, and you will need to enter it again so that the ADMCHG (admin change) flag is cleared after you set the NULL password.

Note: You need to be root to perform the grep -p username /etc/security/passwd command
This User Gave Thanks to MichaelFelt For This Post:
landog
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Change password by pushing encrypted password to systems

I'm tasked to change a user's password on multiple Linux systems (RH v3). I though copying the encrypted password from one Linux /etc/shadow file to another would work but I was wrong. The long term solution is to establish an openLDAP Directory service, but for now I'm stuck with a manual... (1 Reply)
Discussion started by: benq70
1 Replies

2. AIX

change password in one go

Hi all, I need to change the password of any user in one go. For example in Linux we have two options :- (echo "username:password") | chpasswd or echo $PASS | passwd $USER --stdin This changes the password without prompting. Actually, I need to make a script which adds a user and... (1 Reply)
Discussion started by: vikas027
1 Replies

3. Shell Programming and Scripting

change password in one go

Hi all, I need to change the password of any user in one go. For example in Linux we have two options :- (echo "username:password") | chpasswd or echo $PASS | passwd $USER --stdin This changes the password without prompting. Actually, I need to make a script which adds a user and... (5 Replies)
Discussion started by: vikas027
5 Replies

4. Linux

max password is blank

Hi All, I have this userid: # cat /etc/shadow | grep mysql mysql:$1$O12345678901234/.:123456:0::14::: Max password expiration is blank. What does it mean? If it's like this below mysql:$1$O12345678901234/.:123456:0:99999:14::: then there's no expiration. Thanks in advance for... (1 Reply)
Discussion started by: itik
1 Replies

5. Shell Programming and Scripting

how to change root password using shell script with standard password

Hi Friends. I am new to scripting now i want to change the root password using the script with standard password. which is the easy scripting to learn for the beginner, Thanks in advance. (2 Replies)
Discussion started by: kurva
2 Replies

6. Solaris

Solaris 8 - Asks for current root password when trying to change root password.

Hello All, I have several solaris boxes running Solaris 8. When changing root passwords on them, all will simply ask for the new root password to change and of course to re-type the new password. One of the systems however asks for the existing root password before it will display the new password... (8 Replies)
Discussion started by: tferrazz
8 Replies

7. Solaris

Blank Password (Solaris 10)

Hello, I have a doubt about the accounts. With a "grep" to file "shadow" get the accounts have no password: The output is: However, if I do a "su <bin, sys, etc>" request password. What is the true state of accounts? The file "shadow" are as follows: I... (4 Replies)
Discussion started by: musul
4 Replies

8. UNIX for Dummies Questions & Answers

Help with Password Change

When I am trying to change the password of my account. I could see the following error: passwd: Changing password for ramu Enter existing login password: passwd: Sorry: less than 14 days since the last change. Permission denied Is anybody out there who can help me in changing my password? (4 Replies)
Discussion started by: bobby1015
4 Replies

9. Red Hat

Change of password

Hi, I need the user to change the password giving the old password and the giving the new password... Is this can be done via the chage command. (1 Reply)
Discussion started by: gsiva
1 Replies

10. Forum Support Area for Unregistered Users & Account Problems

Password sent via reset password email is 'weak' and won't allow me to change my password

I was unable to login and so used the "Forgotten Password' process. I was sent a NEWLY-PROVIDED password and a link through which my password could be changed. The NEWLY-PROVIDED password allowed me to login. Following the provided link I attempted to update my password to one of my own... (1 Reply)
Discussion started by: Rich Marton
1 Replies

LEARN ABOUT NETBSD

passwd

PASSWD(1)						    BSD General Commands Manual 						 PASSWD(1)

NAME

     passwd -- modify a user's password

SYNOPSIS

     passwd [user]
     passwd [-d files | -l] [user]
     passwd [-d nis | -y] [user]
     passwd [-d krb5 | -k] [principal]

DESCRIPTION

     passwd changes the user's password.  First, the user is prompted for their current password.  If the current password is correctly typed, a
     new password is requested.  The new password must be entered twice to avoid typing errors.

     The new password should be at least six characters long and not purely alphabetic.  Its total length must be less than _PASSWORD_LEN (cur-
     rently 128 characters).  Numbers, upper case letters and meta characters are encouraged.

     All options may not be available on all systems.

     -d database
	   This option specifies the password database that should be updated.	The following databases are supported:

	   files  This specifies that the password change should be applied to the local password file.  When changing only the local password,
		  passwd uses pwd_mkdb(8) to update the password databases.

	   nis	  This specifies that the password change should be applied to the NIS password database.  The rpc.yppasswdd(8) daemon should be
		  running on the master NIS server.

	   krb5   This specifies that the user's Kerberos 5 password should be changed.  The host must be configured to use Kerberos.  See
		  krb5.conf(5).

     -l    This is the equivalent of -d files.

     -y    This is the equivalent of -d nis.

     -k    This is the equivalent of -d krb5.

     If a password database is not specified, passwd will change the password database as determined by the Pluggable Authentication Module (PAM)
     library.

     The type of cipher used to encrypt the password depends on the configuration in passwd.conf(5).  It can be different for local and NIS pass-
     words.

FILES

     /etc/master.passwd  The user database
     /etc/passwd	 A Version 7 format password file
     /etc/passwd.XXXXXX  Temporary copy of the password file

SEE ALSO

     chpass(1), login(1), pwhash(1), passwd(5), passwd.conf(5), pam(8), pwd_mkdb(8), vipw(8)

     Robert Morris and Ken Thompson, UNIX password security.

HISTORY

     A passwd command appeared in Version 6 AT&T UNIX.

BSD
								 February 25, 2005							       BSD
All times are GMT -4. The time now is 04:47 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy