Password aging on Solaris
Biometrics, Digital certificates, Identity & Access Management, provisioning, Security, Security tokens, Single sign-on
We currently have 6 Sun servers of various models, all running Solaris 9. I've been tasked with implementing global password aging for all these hosts.
I know that I can set global values for use when creating new users, by modifying /etc/default/passwd (although I would prefer to set it in days, not weeks, but that's not the issue).
My big problem is, I have at least 200 accounts each, on half of the servers - and I readlly, really don't want to have to hand-edit /etc/shadow to add the approporate values. admintool doesn't seem to suit my needs either.
Does anyone know of a relatively easy way - aside from building a script to insert the values - to implement password aging for all existing accounts?
Thanks much in advance.
Software/Hardware used:
Software/Hardware used:
ASKED:
October 18, 2005 9:14 AM
UPDATED:
October 20, 2005 11:09 AM
Answer Wiki:
Aside from building a script? No.
I'm actually surprised nobody has replied to this, it's not that hard to write a script to do this. In fact, I just so happen to have one. I know this board likes to change code formatting, so I put it here ~> http://www.semitekie.com/viewtopic.php?p=6#6
To see all answers submitted to the Answer Wiki: View Answer History.
Thanks for the reply, and for pointing me to a good script.
I may have to go that route, but I was trying to avoiid doing so, because we have some userIDs that are generic for applications and should not be aged. I guess I’ll have to build a list by hand, then dump those IDs into a script.
Thanks anyway.