Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: User account management Sol10
Operating Systems Solaris User account management Sol10 Post 302251919 by gwhelan on Tuesday 28th of October 2008 11:07:12 AM
Old 10-28-2008
User account management Sol10
Hi,

Is all of the user account password security settings kept in the /etc/default/passwd file or is there some new control in Solaris 10 that defines these?

I need to know the security settings for passwords in Solaris 10. Also is there any way to find out when accounts were created? Thanks.
 

9 More Discussions You Might Find Interesting

1. Cybersecurity

HP-UX user management

Hello All, Does anyone know of any good utilities for user management/password management for HP-UX? I have 32 switchs (telephone) running HP-UX 10x and managing the users on them is becoming quite time consuming... Thanks Brian (1 Reply)
Discussion started by: breigner
1 Replies

2. AIX

User Management

Can someone suggest me any means of having a controlled way to user access ... basically we have a varied environment of people(users) logging in to AIX boxes ... either via 1) telnet ... 2) application 3) databse (SQL's) what we need to do is formalise this .. can someone help me with this ... (2 Replies)
Discussion started by: rajesh_149
2 Replies

3. What is on Your Mind?

Root User Management

I am currently executing a Unix audit & would like some guidance on best practice for the management of root user access. The organisation is small, with an IT team of approx 25. (6 Replies)
Discussion started by: conaloregan
6 Replies

4. Solaris

Centralised Account Management

Hi all. be gentle, its my first time :-) I seem to have had this isse dumped on me and could do with help/advice. We have several Solaris10 servers, authentication is done per server using the usual useradd and the passwd/group/shadow files. we're now at a point where we need some way of... (4 Replies)
Discussion started by: boneyard
4 Replies

5. UNIX for Dummies Questions & Answers

Difference between : Locked User Account & Disabled User Accounts in Linux ?

Thanks AVKlinux (3 Replies)
Discussion started by: avklinux
3 Replies

6. Solaris

changing user password as root on LDAP client SOl10/u7

I'm fairly inexperienced with LDAP and DSEE so to build my skills I installed directory server in the global zone of my Sol 10/u7 machine and created a zone to use as a client. For some reason when I try to change a users password as root (in the client zone) with passwd -r ldap I am prompted for... (1 Reply)
Discussion started by: ilikecows
1 Replies

7. Linux

User Management in linux

Hi All, I have to learn all the user management commend like adduser,useradd,chggrp... etc I would like to know the syntax or example. Please give me document or link. Thanks, Mani (1 Reply)
Discussion started by: Mani_apr08
1 Replies

8. AIX

Help with user management

Hi When i search for a user it shows that the user doesn't exist # lsuser x090817 3004-687 User "x090817" does not exist. But under /var/spool/mail/ the file named x090817 still exists. 4700 1 -rw-rw---- 1 2090817 mail 603 Apr 12 2010 /var/spool/mail/x090817... (1 Reply)
Discussion started by: aixaixaixaix
1 Replies

9. HP-UX

User account

I need to check actual date a user was disabled on my HP-UX server. Audit is claiming the user account was active during the last audit exercise. (7 Replies)
Discussion started by: cyriac_N
7 Replies

LEARN ABOUT HPUX

pam_dce

pam_dce(5)																pam_dce(5)

NAME

       pam_dce - authentication, account, and password management PAM functions for DCE

SYNOPSIS

       /usr/lib/security/libpam_dce.so.1

DESCRIPTION

       The  DCE  PAM  modules allow integration of DCE into the system entry services (such as login, telnet, rlogin, ftp) through the pam.conf(4)
       file.  The DCE service module for PAM consists of the following three modules: the authentication module, the  account  management  module,
       and  the  password management module.  All three modules are supported through the same loadable library, /usr/lib/security/libpam_dce.so.1
       is the interface that services the requests from These requests will be communicated to the DCE security server, which in  turn	sends  the
       response back to ilogind. This response is then sent back to /usr/lib/security/libpam_dce.so.1.

Authentication Module
       The  authentication  module certifies the identity of a user and the user's credentials.  It passes the authentication key derived from the
       user's password to the DCE Security Service.  The Security Service then uses the authentication key to certify the user and the user's cre-
       dentials.  The following options can be passed to the authentication module through the pam.conf(4) file:

	      debug	     Turn on syslog debugging at the LOG_DEBUG level.

	      nowarn	     Turn off warning messages about not being able to acquire DCE credentials.

	      use_first_pass Use  the initial password (entered when the user is authenticated to the first authentication module in the stack) to
			     authenticate with DCE.  If the user can not be authenticated or if this is the first  authentication  module  in  the
			     stack,  quit and do not prompt a password. It is recommended that this option be used only if the authentication mod-
			     ule is designated as optional in the pam.conf(4) configuration file.

	      try_first_pass Use the initial password (entered when the user is authenticated to the first authentication module in the PAM stack)
			     to  authenticate  with DCE.  If the user cannot be authenticated or if this is the first authentication module in the
			     stack, prompt for a password.

       A user must be authenticated and the user's credentials set before a system entry service can access any file directories owned by the user
       that are mounted through DTS.

Account Management Module
       The account management module provides a function to perform account management (pam_sm_acct_mgmt(3)).  sends a request to the
	DCE  implementation  of  pam_sm_acct_mgmt(3)  function which retrieves the user's account and password expiration information from the DCE
       Security Server and verifies that the user's account and password have not expired.  The following options can be  passed  to  the  account
       module through the pam.conf(4) file:

	      debug		  Turn on syslog debugging at the LOG_DEBUG level.

	      nowarn		  Turn off warning messages displayed when a user's account and/or password are going to expire.

       pam_sm_acct_mgmt(3) calls the function sec_login_inquire_net_info(3) to retrieve information about when a user's account and/or password is
       going to expire.

Password Management Module
       The password management module provides a function to change passwords (pam_sm_chauthtok(3)).  The following options can be passed  to  the
       password module through the pam.conf(4) file:

	      debug	     Turn on syslog debugging at the LOG_DEBUG level.

	      nowarn	     Turn off warning messages about not being able to change passwords.

	      try_first_pass Use  the  initial	password (entered to the first password module in the PAM stack) to authenticate with DCE.  If the
			     user cannot be authenticated or if this is the first password module in the stack, prompt for a password.

	      use_first_pass Use the initial password (entered to the first password module in the PAM stack) to authenticate with  DCE.  If  user
			     cannot  be authenticated or if this is the first password module in the stack, quit and do not prompt for a password.
			     It is recommended that this option be used only if  the  DCE  password  module  is  designated  as  optional  in  the
			     pam.conf(4) configuration file.

SEE ALSO

       pam(3),	  sec_login_setup_identity(3),	  sec_login_valid_and_cert_ident(3),	sec_login_set_context(3),   sec_login_inquire_net_info(3),
       pam.conf(4), pam_unix(5) ilogind(1m)

HP DCE
																	pam_dce(5)
All times are GMT -4. The time now is 10:04 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy