Solved

Looking for information on password policy management in Suse 9.3 (Yast specific)

Posted on 2008-10-29
2
797 Views
Last Modified: 2013-12-05
Ok I apologize in advance for what is probably a simple question.

I am running Suse Linux 9.3 and am trying understand a specific behavior in regards to password policy management.

From a vanilla install of Suse 9.3 I opened Yast  and created a new user in the "edit and create users" tool. I noticed that there were no restrictions, warnings, or expirations applied to the account's password so I opened up the "Security Settings" configuration tool and setup some basic password policies (length, expiration, expiration warnings). Now for every new user I create, they seem to have these settings applied. However, making this configuration change did not apply to accounts created previously.

Why is this?

Are there any good documents that explain what is being modified (config files) by these tools in Yast? I did some searching but can not seem to find a good concise explanation.

Thanks in advance.
0
Comment
Question by:rpryomski
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 9

Accepted Solution

by:
chingmd earned 125 total points
ID: 22834286
Not being familiar with yast specifically, I can at least answer why the previously created accounts do not take these changes.

It is likely calling the passwd command.   Adding the options needed to set the policy on the account being created.  These settings only effect the account being created.  Since other accounts may not want these changes.   It's better to not make a blanket change like this in case there are special sertvice accounts that you don't want to password change.

If you DO need/want to change existing accounts, you will want to use the following commandline:  chage

Look at the man page for it to see all the options.  

Here is a KB article too:
http://www.cyberciti.biz/tips/setting-off-password-aging-expiration.html
0
 

Author Closing Comment

by:rpryomski
ID: 31511081
Thanks this put me on the right track. Turns out there is a lot going on with YAST as it relates to user management...more than I had anticipated.

Thanks again.
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The purpose of this article is to show how we can create Linux Mint virtual machine using Oracle Virtual Box. To install Linux Mint we have to download the ISO file from its website i.e. http://www.linuxmint.com. Once you open the link you will see …
BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial
This tutorial will teach you the special effect of super speed similar to the fictional character Wally West aka "The Flash" After Shake : http://www.videocopilot.net/presets/after_shake/ All lightning effects with instructions : http://www.mediaf…
Suggested Courses

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question