I need help. I have set a password policy. But I want to dis allow setting user name as password.
My policy is as below...
Still user can set his username as password (i.e. Jackie1234).
Hi all of you..............
I am using openldap on ubuntu server . i want to apply password policy for user's to set password length , expire date , ......etc.
can anybody guide me to configure this. (1 Reply)
Hi Solaris's expert
I need to change user password on Solaris10 2 servers.
With the same password I can change it just only one.
Try to check everything but not found difference??
password pattern: abcdeFgh9Jk
server1 check all characters but server2 check only first 8 characters.Why??... (10 Replies)
Today i was going through some of security guides written on linux .
Under shadow file security following points were mentioned.
1)The encrypted password stored under /etc/shadow file should have more than 14-25 characters.
2)Usernames in shadow file must satisfy to all the same rules as... (14 Replies)
Hi,
I am running NIS server on redhat linux 5 and I want to implement password restrictions for the yppasswd, how can I do it.Please help me.
I can implement password restriction for passwd by configuring /etc/pam.d/system-auth and setting crack_lib.so but I don't know how to implent the same... (3 Replies)
hi folk,
i try to setup a new password policy for our solaris box user, below are the /etc/default/passwd/, but then when i tried to create a user, it didn't ask for numeric character, and the new password also didn't ask for special characters.
# useradd testing
# passwd testing
New... (7 Replies)
Hi linux expert,
i would like to create a script for listing all user with there password policy. It should be in the following format:
Last password change : Sep 19, 2011
Password expires : never
Password inactive : never
Account... (2 Replies)
Hi Experts,
i would like to know the description of the following:
Minimum: 0
Maximum: 90
Warning: 7
Inactive: -1
Last Change: Never
Password Expires: Never
Password Inactive: Never
Account Expires: Never
Does this means that... (2 Replies)
Hello All,
I have Sun DSEE7 (11g) on Solaris 10.
I have run idsconfig and initialized ldap client with profile created using idsconfig.
My ldap authentication works. Here is my pam.conf
# Authentication management
#
# login service (explicit because of pam_dial_auth)
#
login ... (3 Replies)
Hello Team,
I am using Lubuntu & have DRBL remote boot setup with open Ldap authentication. Currently there is no password expire policy. I want to set Password Policy so that user's password will expire after a month & they will get prompt to change their password.
Using PAM we can do it,... (1 Reply)
Hi,
I am unable to enforce password complexity policy for root user. (other users are working) on RHEL 6.2. Anything wrong with system-auth parameters? PLease help..
vi /etc/pam.d/system-auth
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time... (1 Reply)
Discussion started by: suresh3566
1 Replies
LEARN ABOUT MOJAVE
pam_localauthentication
pam_opendirectory(8) BSD System Manager's Manual pam_opendirectory(8)NAME
pam_opendirectory -- OpenDirectory PAM module
SYNOPSIS
[service-name] function-class control-flag pam_opendirectory [options]
DESCRIPTION
The OpenDirectory PAM module supports the authentication, account management and password management function classes. In terms of the
function-class parameter, these are ``auth'', ``account'' and ``password'' respectively.
The OpenDirectory Authentication Module
The OpenDirectory authentication module permits or denies users based on OpenDirectory password authentication.
The following option may be passed to this authentication module:
nullok Allow null passwords.
The OpenDirectory Account Management Module
The OpenDirectory account management module permits or denies users based whether the account is enabled in OpenDirectory.
The following option may be passed to this account management module:
no_check_shell
Skip validating the user's shell.
no_check_home
Skip validating the user's home directory.
refresh=min
Sets the mbr_check_membership(3) cache timeout to min minutes. When this option is used, the min value must be specified, and it
must be an integer.
The OpenDirectory Password Management Module
The OpenDirectory password management module supports password changing and enforces the OpenDirectory password policy.
SEE ALSO mbr_check_membership(3), pam.conf(5), pam(8), pwpolicy(8), DirectoryService(8)BSD February 7, 2009 BSD