Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1015
  • Last Modified:

Locking user accounts

Pls provide script for locking user accounts on solaris after 3 failed login attempts.  I couldnt find any direct way to lock user accounts
0
rojy_20
Asked:
rojy_20
1 Solution
 
TintinCommented:
Use PAM_login_limit from http://www.comsmiths.com.au/pam/
0
 
rojy_20Author Commented:
I donot want to download this utilty as we do have restrictions.  If there are some scripts that I could run; then it would be helpful
0
 
TintinCommented:
What version of Solaris do you use?  

What are the restrictions?  You can download the source from comsmiths.com.

You could possibly use scripts, but it wouldn't be the easiest of tasks.  Much better to use something that is known to work.
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
NukfrorCommented:
One way for sure to work without having to download 3rd party PAM modules is to updade to Solaris 10.  Automagic account lockout has finally been added to Solaris.  But I doubt upgrading Solaris was part of your plan ... ;D
0
 
rojy_20Author Commented:
Tintin
We have Versions 8, 9 and 10 running in our environment.  Restrictions are mainly with regard to management approval.  I understand scripts are not easy but its worth a try...

Nukfror
Upgrade to 10??!! Now that will take a decade to get approved ;-)
0
 
TintinCommented:
Don't you love it when management place all these restrictions to make life more difficult.  They generally make these decisions based upon some vague concept that using third party or open source software is bad.

As for using scripts, the only way you could do it with standard tools is to interegate /var/adm/loginlog, but this only logs entries after 5 successive failed login attempts, so that may or may not be sufficient for your needs.
0
 
advegaCommented:
why don't you check the /etc/default/* files !
They are self explanatory with comments above each configurable parameter.

may be there you can find answers to what you need.

regards...
0
 
TintinCommented:
advega.

There are no Solaris options in the /etc/default/ files to lock an account.
0
 
TintinCommented:
My first solution works well providing you don't have brain dead management who refuse to install software that actually solves the problem.
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now