Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Need openLDAP + Password policy guide
Special Forums UNIX and Linux Applications Need openLDAP + Password policy guide Post 302229267 by jagnikam on Tuesday 26th of August 2008 03:09:39 PM
Old 08-26-2008
Quote:
Originally Posted by jagnikam
Hi all of you..............

I am using openldap on ubuntu server . i want to apply password policy for user's to set password length , expire date , ......etc.


can anybody guide me to configure this.

Hi guys ...
i have solved this problem using cracklib.

Thank you
 

10 More Discussions You Might Find Interesting

1. Solaris

Password policy problem ??

Hi Solaris's expert I need to change user password on Solaris10 2 servers. With the same password I can change it just only one. Try to check everything but not found difference?? password pattern: abcdeFgh9Jk server1 check all characters but server2 check only first 8 characters.Why??... (10 Replies)
Discussion started by: arm_naja
10 Replies

2. Red Hat

Shadow file password policy

Today i was going through some of security guides written on linux . Under shadow file security following points were mentioned. 1)The encrypted password stored under /etc/shadow file should have more than 14-25 characters. 2)Usernames in shadow file must satisfy to all the same rules as... (14 Replies)
Discussion started by: pinga123
14 Replies

3. Red Hat

NIS password policy

Hi, I am running NIS server on redhat linux 5 and I want to implement password restrictions for the yppasswd, how can I do it.Please help me. I can implement password restriction for passwd by configuring /etc/pam.d/system-auth and setting crack_lib.so but I don't know how to implent the same... (3 Replies)
Discussion started by: ktrimu
3 Replies

4. Solaris

password policy for new user

hi folk, i try to setup a new password policy for our solaris box user, below are the /etc/default/passwd/, but then when i tried to create a user, it didn't ask for numeric character, and the new password also didn't ask for special characters. # useradd testing # passwd testing New... (7 Replies)
Discussion started by: dehetoxic
7 Replies

5. Ubuntu

User and Password Policy

Hi linux expert, i would like to create a script for listing all user with there password policy. It should be in the following format: Last password change : Sep 19, 2011 Password expires : never Password inactive : never Account... (2 Replies)
Discussion started by: yprudent
2 Replies

6. Red Hat

Password Policy description

Hi Experts, i would like to know the description of the following: Minimum: 0 Maximum: 90 Warning: 7 Inactive: -1 Last Change: Never Password Expires: Never Password Inactive: Never Account Expires: Never Does this means that... (2 Replies)
Discussion started by: yprudent
2 Replies

7. Solaris

Solaris and PAM Password policy

Hello All, I have Sun DSEE7 (11g) on Solaris 10. I have run idsconfig and initialized ldap client with profile created using idsconfig. My ldap authentication works. Here is my pam.conf # Authentication management # # login service (explicit because of pam_dial_auth) # login ... (3 Replies)
Discussion started by: pandu345
3 Replies

8. Ubuntu

Password Expiration Policy

Hello Team, I am using Lubuntu & have DRBL remote boot setup with open Ldap authentication. Currently there is no password expire policy. I want to set Password Policy so that user's password will expire after a month & they will get prompt to change their password. Using PAM we can do it,... (1 Reply)
Discussion started by: paragnehete
1 Replies

9. AIX

Password Policy

I need help. I have set a password policy. But I want to dis allow setting user name as password. My policy is as below... min length =8 min diff=2 min alpha=2 max repeats=2 dictionary= /usr/share/dict/words Still user can set his username as password (i.e. Jackie1234). Code tags for... (11 Replies)
Discussion started by: powerAIX
11 Replies

10. Red Hat

Password policy for root

Hi, I am unable to enforce password complexity policy for root user. (other users are working) on RHEL 6.2. Anything wrong with system-auth parameters? PLease help.. vi /etc/pam.d/system-auth #%PAM-1.0 # This file is auto-generated. # User changes will be destroyed the next time... (1 Reply)
Discussion started by: suresh3566
1 Replies

LEARN ABOUT CENTOS

cracklib

FascistCheck(3)                                               Debian GNU/Linux manual                                              FascistCheck(3)

NAME

       FascistCheck - a pro-active password checker library

SYNOPSIS

       #include <crack.h>

       static char const CRACKLIB_DICTPATH[] =  ...;

       extern char const *
       FascistCheck(char const passwd[], char const dictpath[]);

DESCRIPTION

       cracklib is a library containing the FascistCheck C function which may be used in a "passwd" like program.  The idea is simple: try to pre-
       vent users from choosing passwords that could be guessed by "crack" by filtering them out, at source.  cracklib is an offshoot of  the  the
       version 5 of the "crack" software and contains a considerable number of ideas nicked from the new software.

       The  first formal argument password is the potential password.  The second formal argument dictpath is the full path name + filename prefix
       of the cracklib dictionary database.  FascistCheck returns the NULL pointer for a good password, or a pointer to a diagnostic string if  it
       is a weak password.

       The  database  is  in  a  binary format generated by the utilities crack_mkdict(8) and crack_packer(8).  On a Debian system the database is
       located in the directory defined by the static constant CRACKLIB_DICTPATH and is set to  /var/cache/cracklib/cracklib_dict.   None  of  the
       subroutines  in  the  cracklib  libraries have this location hard-coded into their implementations.  It is generated daily with the program
       /etc/cron.daily/cracklib.

FILES

       /var/cache/cracklib/cracklib_dict.[hwm|pwd|pwi]
              cracklib dictionary database files used by utilities.

       /etc/cron.daily/cracklib
              cracklib daily cron program to rebuild the cracklib dictionary database.

       /etc/cracklib/cracklib.conf
              cracklib configuration file used by the cracklib daily cron program to rebuild the cracklib dictionary database.

       /usr/sbin/crack_mkdict
              cracklib shell script to create initial list of words for dictionary database.

       /usr/share/doc/cracklib2-dev/examples
              Example cc(1) source files that show how FascistCheck is used.

SEE ALSO

       crack_teststr(8), crack_mkdict(8), update-cracklib(8)
       /usr/share/doc/cracklib2-dev/examples
       /usr/share/doc/cracklib2/cracklib2.html
       /usr/share/doc/cracklib2-dev/cracklib2-dev.html

AUTHOR

       cracklib2 is written by Alec Muffett <alecm@crypto.dircon.co.uk>. Manual added by Jean Pierre LeJacq <jplejacq@quoininc.com>.

2.7-8.5                                                   Wed, 3 Oct 2001 01:37:09 +0100                                           FascistCheck(3)
All times are GMT -4. The time now is 10:55 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy