Solved

password policy AIX IBM commands

Posted on 2014-02-11
2
1,403 Views
Last Modified: 2014-02-11
is there a command on AIX IBM to list the password policy (and account lockout) for all accounts on an AIX IBM system? i assume some accounts may be subject to different policy settings...
0
Comment
Question by:pma111
2 Comments
 
LVL 68

Accepted Solution

by:
woolmilkporc earned 500 total points
ID: 39850112
The command to use (for all users) is

lsuser ALL

("ALL" in uppercase)

This will give you quite a lot of output.

The flags which might be of interest to you are:

expires, pwdwarntime, account_locked, minage, maxage,  maxexpired, minalpha, minother, mindiff, maxrepeats, minlen, histexpire, histsize, pwdchecks

So:

lsuser -a expires pwdwarntime account_locked minage maxage maxexpired minalpha minother mindiff maxrepeats minlen histexpire histsize pwdchecks ALL

will show only the mentioned flags.

Replace ALL wit a username or a comma-separated list of usernames to see the settings for a subset of your user community, like this:

lsuser -a expires pwdwarntime account_locked minage maxage maxexpired minalpha minother mindiff maxrepeats minlen histexpire histsize pwdchecks user1,user2,user3

See "man chuser" (!) or look here:
http://publib.boulder.ibm.com/infocenter/aix/v7r1/index.jsp?topic=%2Fcom.ibm.aix.cmds%2Fdoc%2Faixcmds1%2Fchuser.htm
for detailed info on the meaning of the single flags.

If you have difficulties understanding the concept or some flags please don't hesitate to ask, I'll explain.
0
 
LVL 3

Author Closing Comment

by:pma111
ID: 39850123
thanks again..
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Unix, date minus 1, 2 or 3 days (last working day) 11 67
Image not there 4 56
Issue to mail 11 108
OS Selection Menu 1 47
Introduction Regular patching is part of a system administrator's tasks. However, many patches require that the system be in single-user mode before they can be installed. A cluster patch in particular can take quite a while to apply if the machine…
Using libpcap/Jpcap to capture and send packets on Solaris version (10/11) Library used: 1.      Libpcap (http://www.tcpdump.org) Version 1.2 2.      Jpcap(http://netresearch.ics.uci.edu/kfujii/Jpcap/doc/index.html) Version 0.6 Prerequisite: 1.      GCC …
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question