Link to home
Start Free TrialLog in
Avatar of ralmada
ralmadaFlag for Canada

asked on

Solaris password

Here is my situation:

Solaris 10 machine

/etc/default/passwd has MAXWEEKS=0, MINWEEKS=0 and WARNWEEK=0. So basically, my understanding is that password will never expire.

However, when I look at the shadow file I see users with:

user:password:15498:1:90:7:::

What am I missing here? Is there any other setting that I'm overlooking?
Avatar of omarfarid
omarfarid
Flag of United Arab Emirates image

What you experience with the user you mentioned? The other file is for default setup
Seems you changed /etc/default/passwd after the users in question have been created and their passwords set.
ASKER CERTIFIED SOLUTION
Avatar of arnold
arnold
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of ralmada

ASKER

woolmilkporc,

/etc/default/passwd was last modified last June last year.
Avatar of ralmada

ASKER

Hi arnold, I didn't see your post before. So you're saying that it might be possible that this user expiry date was set with useradd command, but how can we explain the WARNWEEK=0 then?
Not sure what you are asking.  You can administratively set accounts to expire without user notification.
Avatar of ralmada

ASKER

So basically you said that we can set the password expiry using useradd, correct? But how can we explain the password expiry warning notice. My understanding is that by default is 0 as set with WARNWEEK=0. But when I look at the shadow file I see 7 there.
usermod -e never username
You have a default policy and then you can set a rule per user.  The notification occurs after the user logs in.

I.e. default policy no expiry, no warning, no inactive.
You create userA who will be with consulting for the firm for the next six months.  To make sure the account becomes deactivated, you would use
useradd -g users -c "User A" -m -d /home/usera -e "2013-04-13" usera

Now if you or another admin does not intervene around that date, the user's access to the system will expire.
Avatar of ralmada

ASKER

I see. Now, this pops another question, can we say that /etc/default/passwd is useless as we can set up the expiry date with useradd?
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial