what files do I find this security information in unix(s)

following on each of the Unix (AIX, Solaris, Linux) servers

1)      Accounts are locked (requiring the user to reauthenticate) after idle time of 75 minutes or less
2)      Accounts are locked out (disabled) after a maximum of 15 invalid logon attempts
3)      When accounts are locked out due to exceeding the maximum invalid login attempts, the accounts remain disabled for a minimum of 130 minutes or until unlocked by someone with appropriate authority
4)      Passwords must be changed every 180 days
TIMFOX123Asked:
Who is Participating?
 
TintinConnect With a Mentor Commented:
1.  Not possible with standard system configurations. (btw, I assume you mean 75 mins or more)

2. Can't remember the location on AIX, probably under /etc/security
In Solaris 10 and above, it's in /etc/default/login (going from memory here)

3.  Not possible to have a time set on AIX and Solaris systems.

4.  Can't remember the AIX command.  You'll find an option under smit.
On Solaris, do:

passwd -x 180 user
0
 
TIMFOX123Author Commented:
Oh, redhat linux of course.
0
 
balasundaram_sCommented:
1.        export TMOUT=4500 ( you can set it in the /etc/profile )
2 & 3.  vi /etc/pam.d/system-auth --> modify the line
             auth        required      pam_tally.so onerr=fail deny=15 unlock_time=7800
4.        chage -M 180 username  ( password will be valid for 180 days )
0
Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

 
TIMFOX123Author Commented:
B:

good job but I do not want to set it, I want to find the information.

You did too good of a job.  

Cat  filename | grep 'xxx'  usually gives what I need.  I need file names and field names :)



0
 
TintinCommented:
Most of the info you require is in /etc/shadow on Solaris/Linux systems.

On AIX the equivalent are the files under /etc/security
0
 
balasundaram_sConnect With a Mentor Commented:
File names and Field names on AIX,

1.  /etc/profile  -  TMOUT
2.  /etc/security/lastlog - unsuccessful_login_count
3. /etc/security/login.cfg  -  logininterval ( the port will be locked for this seconds, not the user id)
4. /etc/security/user  -   maxage
0
 
TIMFOX123Author Commented:
thank you so much.
0
All Courses

From novice to tech pro — start learning today.