password policy AIX IBM commands

Posted on 2014-02-11
Last Modified: 2014-02-11
is there a command on AIX IBM to list the password policy (and account lockout) for all accounts on an AIX IBM system? i assume some accounts may be subject to different policy settings...
Question by:pma111
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
LVL 68

Accepted Solution

woolmilkporc earned 500 total points
ID: 39850112
The command to use (for all users) is

lsuser ALL

("ALL" in uppercase)

This will give you quite a lot of output.

The flags which might be of interest to you are:

expires, pwdwarntime, account_locked, minage, maxage,  maxexpired, minalpha, minother, mindiff, maxrepeats, minlen, histexpire, histsize, pwdchecks


lsuser -a expires pwdwarntime account_locked minage maxage maxexpired minalpha minother mindiff maxrepeats minlen histexpire histsize pwdchecks ALL

will show only the mentioned flags.

Replace ALL wit a username or a comma-separated list of usernames to see the settings for a subset of your user community, like this:

lsuser -a expires pwdwarntime account_locked minage maxage maxexpired minalpha minother mindiff maxrepeats minlen histexpire histsize pwdchecks user1,user2,user3

See "man chuser" (!) or look here:
for detailed info on the meaning of the single flags.

If you have difficulties understanding the concept or some flags please don't hesitate to ask, I'll explain.

Author Closing Comment

ID: 39850123
thanks again..

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Attention: This article will no longer be maintained. If you have any questions, please feel free to mail me. Please see for the updated article. It is avail…
Introduction Regular patching is part of a system administrator's tasks. However, many patches require that the system be in single-user mode before they can be installed. A cluster patch in particular can take quite a while to apply if the machine…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
This is used to tweak the memory usage for your computer, it is used for servers more so than workstations but just be careful editing registry settings as it may cause irreversible results. I hold no responsibility for anything you do to the regist…

697 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question