Solved

what files do I find this security information in unix(s)

Posted on 2011-03-03
7
425 Views
Last Modified: 2012-05-11
following on each of the Unix (AIX, Solaris, Linux) servers

1)      Accounts are locked (requiring the user to reauthenticate) after idle time of 75 minutes or less
2)      Accounts are locked out (disabled) after a maximum of 15 invalid logon attempts
3)      When accounts are locked out due to exceeding the maximum invalid login attempts, the accounts remain disabled for a minimum of 130 minutes or until unlocked by someone with appropriate authority
4)      Passwords must be changed every 180 days
0
Comment
Question by:TIMFOX123
  • 3
  • 2
  • 2
7 Comments
 

Author Comment

by:TIMFOX123
ID: 35031117
Oh, redhat linux of course.
0
 
LVL 5

Expert Comment

by:balasundaram_s
ID: 35031289
1.        export TMOUT=4500 ( you can set it in the /etc/profile )
2 & 3.  vi /etc/pam.d/system-auth --> modify the line
             auth        required      pam_tally.so onerr=fail deny=15 unlock_time=7800
4.        chage -M 180 username  ( password will be valid for 180 days )
0
 

Author Comment

by:TIMFOX123
ID: 35032841
B:

good job but I do not want to set it, I want to find the information.

You did too good of a job.  

Cat  filename | grep 'xxx'  usually gives what I need.  I need file names and field names :)



0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 
LVL 48

Accepted Solution

by:
Tintin earned 250 total points
ID: 35032986
1.  Not possible with standard system configurations. (btw, I assume you mean 75 mins or more)

2. Can't remember the location on AIX, probably under /etc/security
In Solaris 10 and above, it's in /etc/default/login (going from memory here)

3.  Not possible to have a time set on AIX and Solaris systems.

4.  Can't remember the AIX command.  You'll find an option under smit.
On Solaris, do:

passwd -x 180 user
0
 
LVL 48

Expert Comment

by:Tintin
ID: 35032998
Most of the info you require is in /etc/shadow on Solaris/Linux systems.

On AIX the equivalent are the files under /etc/security
0
 
LVL 5

Assisted Solution

by:balasundaram_s
balasundaram_s earned 250 total points
ID: 35037399
File names and Field names on AIX,

1.  /etc/profile  -  TMOUT
2.  /etc/security/lastlog - unsuccessful_login_count
3. /etc/security/login.cfg  -  logininterval ( the port will be locked for this seconds, not the user id)
4. /etc/security/user  -   maxage
0
 

Author Closing Comment

by:TIMFOX123
ID: 35039621
thank you so much.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Using libpcap/Jpcap to capture and send packets on Solaris version (10/11) Library used: 1.      Libpcap (http://www.tcpdump.org) Version 1.2 2.      Jpcap(http://netresearch.ics.uci.edu/kfujii/Jpcap/doc/index.html) Version 0.6 Prerequisite: 1.      GCC …
In my business, I use the LTS (Long Term Support) versions of Linux. My workstations do real work, and so I rarely have the patience to deal with silly problems caused by an upgraded kernel that had experimental software on it to begin with from a r…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
In a previous video, we went over how to export a DynamoDB table into Amazon S3.  In this video, we show how to load the export from S3 into a DynamoDB table.

937 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

4 Experts available now in Live!

Get 1:1 Help Now