patron
asked on
password rule to be configured on esxi 4.1
i have to check n configure..
1. the following attributes set are allowed to have a non-expiring password:
/etc/ftpusers or
/etc/vsftpd.ftpusers
Id must exist in file
Restrict ftp access
*how to check for specifc servcie status on esxi like if ftp is installed or not ?
2.User stanzas with all of the following attributes set are allowed to have a non-expiring password:
File /etc/security/$FILENAME must be placed in the /etc/security directory and be identical to the filename used in the preceding rule.
Note:File containing a list of userids, one per line, that are not allowed to perform an interactive login to the system
The actual filename may vary.
3. File /etc/pam.d/system-auth:
auth required /lib/security/$ISA/pam_lis tfile.so item=user sense=deny file=/etc/security/$FILENA MEonerr=su cceed
Note: This entry must precede any entries of type auth whose control field is set to the value sufficient.
Note: The actual filename may vary, but it must be placed in the /etc/security directory and have permissions set to 0640 or more restrictive.
pls advcie to implement above in esxi 4.1
1. the following attributes set are allowed to have a non-expiring password:
/etc/ftpusers or
/etc/vsftpd.ftpusers
Id must exist in file
Restrict ftp access
*how to check for specifc servcie status on esxi like if ftp is installed or not ?
2.User stanzas with all of the following attributes set are allowed to have a non-expiring password:
File /etc/security/$FILENAME must be placed in the /etc/security directory and be identical to the filename used in the preceding rule.
Note:File containing a list of userids, one per line, that are not allowed to perform an interactive login to the system
The actual filename may vary.
3. File /etc/pam.d/system-auth:
auth required /lib/security/$ISA/pam_lis
Note: This entry must precede any entries of type auth whose control field is set to the value sufficient.
Note: The actual filename may vary, but it must be placed in the /etc/security directory and have permissions set to 0640 or more restrictive.
pls advcie to implement above in esxi 4.1
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Yes, I would like to know, the source of your information?
ESXi is NOT Linux.
ESXi is NOT Linux.
ASKER
have attached the doc ,i have to check for esxi 4.1
may be i have asked other points in diffrenet queteions here.
can you just have look n advice if thèse are not coevered for esxi 4.1..and if any eveidnec/solution we can provide in both case wether y/n
fix-to-be-checked-on-esxi-4.1.xls
may be i have asked other points in diffrenet queteions here.
can you just have look n advice if thèse are not coevered for esxi 4.1..and if any eveidnec/solution we can provide in both case wether y/n
fix-to-be-checked-on-esxi-4.1.xls
ASKER
Please advice
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
pls advice if none of point is applicable to esxi 4.1?
if anyone related pls. confirm the point number ? or any related info, ll also check for that Harding doc
Thanks
if anyone related pls. confirm the point number ? or any related info, ll also check for that Harding doc
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
pls confirm for point number 2 in sheet , attached eralier, and advice for my question.
https://www.experts-exchange.com/questions/28233874/use-of-different-built-in-accounts-in-esxi-4-1.html
https://www.experts-exchange.com/questions/28233874/use-of-different-built-in-accounts-in-esxi-4-1.html
ASKER
please advice
Not Applicable to ESXi
ASKER
Thanks
ASKER
is it same for other points mentioned above [2 & 3] ?