Controlling password expiration
In the
Account Manager,
select a user name, then select
Users Expiration.
System defaults are used unless you use the default toggle buttons
to unstipple the text fields:
Date login will expire-
A specific date after which the account will be unusable. This allows
you to create temporary accounts. Never prevents expiration.
Days inactive before locking-
Number of days until an expired password causes account to be locked.
Days required between changes-
How long users must wait before they can change their password again.
This prevents users from changing their passwords when they expire
and then immediately changing them back to the previous one.
Days before password expires-
How long a password is valid. When the password expires, the user
is prompted to set a new password when they log in.
A value of -1 disables password expiration (not recommended).
Days until account is warned-
When the user begins receiving warnings that their password
will expire.
You can also alter these settings for user login_name
on the command-line with the
passwd(1)
command:
passwd -n min -x max login_name
passwd -w warn login_name
where:
min-
the minimum number of days between changes
max-
the maximum days before the password expires
warn-
how long before expiration to warn the user
Changing password expiration defaults
The system default values for password expiration
are as follows:
MINWEEKS-
minimum number of weeks before a password can be changed
MAXWEEKS-
maximum number of weeks a password can be unchanged
WARNWEEKS-
number of weeks before a password expires that the user is to be warned
You can change these values in the /etc/default/passwd
file using the
System Defaults Manager
or the
defadm(1M)
command:
defadm passwd parameter=value
NOTE:
The Account Manager and
passwd(1)
use days instead of weeks.
See also:
Next topic:
Controlling password selection
Previous topic:
Setting or changing a user password
© 2004 The SCO Group, Inc. All rights reserved.
UnixWare 7 Release 7.1.4 - 22 April 2004