Ask a Question related to Linux / Unix Administration, Design and Development.
-
zamaron #1
Password aging information
Hi,
Please help me out in writing a shell script which can pop-up a user
when he logs on / his account is about required a password change,
similar when we logon to windows is shows us a message "You are
required to change the password within x days"
I am not getting the logic to build a script which can generate the
password aging info for all users present on sun boxes.
ex:
PS 030195 10 7 -1
Rgds,
zamaron
zamaron Guest
-
Password Aging and System Accounts
Password aging works wonderfully. However, if it's the root account, and you don't log on and change it before it expires, you can wind in a heap... -
LDAP password management (aging)
I was reading the LDAP docs for Solaris 9 and found that "password management" (password aging, expiration, even account lockout on bad logins) was... -
password aging on NIS+ client
Bernd Nies wrote: Patch 108993-18 introduced new PAM libraries which replace the old pam_unix.so.1 library. NIS+ password aging does not work and... -
Password Information
Today I had a box appear on my computer after restarting my computer that I have never seen. It asked for owners name and password in reference to... -
Davide Bianchi #2 Re: Password aging information
In comp.unix.admin zamaron <zamaron2003@netzero.com> wrote:
If you are using password aging the user should be automatically> Please help me out in writing a shell script which can pop-up a user
warned about the password expiration when he/she logs in. No script
is necessary.
man shadow should do the trick> I am not getting the logic to build a script which can generate the
> password aging info for all users present on sun boxes.
Davide
--
| Experience varies directly with equipment ruined.
|
|
|
Davide Bianchi Guest
-
K7MEM #3 Re: Password aging information
zamaron wrote:We needed a custom script to do something similar. Ours is a perl script> Hi,
>
> Please help me out in writing a shell script which can pop-up a user
> when he logs on / his account is about required a password change,
> similar when we logon to windows is shows us a message "You are
> required to change the password within x days"
>
> I am not getting the logic to build a script which can generate the
> password aging info for all users present on sun boxes.
>
> ex:
>
> PS 030195 10 7 -1
>
> Rgds,
> zamaron
that uses third field in the shadow file to tell us when the users
password was changed last. We place a 65 day limit on a users password.
At 55 days we start sending the user email notifying them that their
password is going to expire. If they do not change the password befor
the expiration date their login shell is changed and they will not be
able to log in. Once that happens they need to call the help desk to get
their password reset.
There are several companion scripts that monitor changes in the password
file and CGI web pages that allow us to scan the user accounts and see
who is about to expire and who isn't.
We have had our script in place for 3 or 4 years now and it's working
just fine. We also have a screen lock policy. Most everyone on Unix uses
CDE so we have another script that goes into a users .dt directory and
sets his screen lock and lock time. This also works very well.
--
Martin E. Meserve
[email]k7mem@myrealbox.com[/email]
K7MEM Guest
-
zamaron #4 Re: Password aging information
Where can I find the perl script which had helped you?
K7MEM <k7mem@myrealbox.com> wrote in message news:<40A28F1E.7070205@myrealbox.com>...> zamaron wrote:>> > Hi,
> >
> > Please help me out in writing a shell script which can pop-up a user
> > when he logs on / his account is about required a password change,
> > similar when we logon to windows is shows us a message "You are
> > required to change the password within x days"
> >
> > I am not getting the logic to build a script which can generate the
> > password aging info for all users present on sun boxes.
> >
> > ex:
> >
> > PS 030195 10 7 -1
> >
> > Rgds,
> > zamaron
> We needed a custom script to do something similar. Ours is a perl script
> that uses third field in the shadow file to tell us when the users
> password was changed last. We place a 65 day limit on a users password.
> At 55 days we start sending the user email notifying them that their
> password is going to expire. If they do not change the password befor
> the expiration date their login shell is changed and they will not be
> able to log in. Once that happens they need to call the help desk to get
> their password reset.
>
> There are several companion scripts that monitor changes in the password
> file and CGI web pages that allow us to scan the user accounts and see
> who is about to expire and who isn't.
>
> We have had our script in place for 3 or 4 years now and it's working
> just fine. We also have a screen lock policy. Most everyone on Unix uses
> CDE so we have another script that goes into a users .dt directory and
> sets his screen lock and lock time. This also works very well.zamaron Guest
-
Alan Hargreaves - Product Technical Support (APAC) #5 Re: Password aging information
The way we did it at my job before coming to sun was to have the
passwdord and shadow files under RCS. They would generally be left open
for write and just before midnight each night cron would do a check in,
check out. That would give us a way of going back to a passwd file N
days old and comparing individual encrypted passwords. The nice thing
with doing it this way is that it works in a NIS environment, and
doesn't really impact the existing infrastructure.
alan.
zamaron wrote:> Where can I find the perl script which had helped you?
>
> K7MEM <k7mem@myrealbox.com> wrote in message news:<40A28F1E.7070205@myrealbox.com>...
>>>zamaron wrote:
>>>>>>>Hi,
>>>
>>>Please help me out in writing a shell script which can pop-up a user
>>>when he logs on / his account is about required a password change,
>>>similar when we logon to windows is shows us a message "You are
>>>required to change the password within x days"
>>>
>>>I am not getting the logic to build a script which can generate the
>>>password aging info for all users present on sun boxes.
>>>
>>>ex:
>>>
>>>PS 030195 10 7 -1
>>>
>>>Rgds,
>>>zamaron
>>We needed a custom script to do something similar. Ours is a perl script
>>that uses third field in the shadow file to tell us when the users
>>password was changed last. We place a 65 day limit on a users password.
>>At 55 days we start sending the user email notifying them that their
>>password is going to expire. If they do not change the password befor
>>the expiration date their login shell is changed and they will not be
>>able to log in. Once that happens they need to call the help desk to get
>>their password reset.
>>
>>There are several companion scripts that monitor changes in the password
>>file and CGI web pages that allow us to scan the user accounts and see
>>who is about to expire and who isn't.
>>
>>We have had our script in place for 3 or 4 years now and it's working
>>just fine. We also have a screen lock policy. Most everyone on Unix uses
>>CDE so we have another script that goes into a users .dt directory and
>>sets his screen lock and lock time. This also works very well.Alan Hargreaves - Product Technical Support (APAC) Guest
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
