HP-UX Reference (11i v1 00/12) - 1 User Commands N-Z (vol 2)
__________________________________________________________________________________________________________________________________________________________________________________________________
__________________________________________________________________________________________________________________________________________________________________________________________________
STANDARD Printed by: Nora Chuang [nchuang] STANDARD
/build/1111/BRICK/man1/neqn.1
________________________________________________________________
___ ___
p
passwd(1) passwd(1)
A password expires after a period of time known as the expiration time. System warnings are displayed as
expiration time approaches.
A password dies after a time period known as the password lifetime. After the lifetime passes, the account
is locked until it is re-enabled by a system administrator. Once unlocked, the user is forced to change the
password before account use.
The system administrator can enable accounts without passwords. If a user account is allowed to function
without a password, the user can choose a null password by typing a carriage-return when prompted for a
new password.
The system administrator can enable the password history feature to discourage users from reusing previ-
ously used passwords. Refer to the security(4) manual page for detailed information on configurable param-
eters that affect the behavior of this command. The parameter for password history is:
PASSWORD_HISTORY_DEPTH
EXTERNAL INFLUENCES
International Code Set Support
Characters from single-byte character code sets are supported in passwords.
EXAMPLES
Change the password expiration date of user to 42 days in the files repository:
passwd -r files -x 42 user
Modify the minimum time between password changes of user1 to 7 days in the nisplus repository:
passwd -r nisplus -n 7 user1
Force user2 to establish a new password on the next login which will expire in 70 days and prohibit the
user from changing the password until 7 days have transpired:
passwd -r files -f -x 70 -n 7 user2
DEPENDENCIES
Pluggable Authentication Modules (PAM)
PAM is an Open Group standard for user authentication, password modification, and account validation. In
particular, pam_chauthtok() is invoked to perform all functions related to
passwd. This includes
establishingand changing a password, using
passwd options, and displaying error messages.
WARNINGS
Avoid password characters which have special meaning to the tty driver, such as # (erase) and @ (kill). You
may not be able to login with these characters.
Multiple superusers are allowed, but are strongly discouraged. That is because the system often stores
user ID rather than user name. Having unique IDs for all users will guarantee a consistent mapping
between user name and user ID.
FILES
/etc/passwd Standard password file used by HP-UX.
/tcb/files/auth/*/*
Protected password database used when system is converted to trusted sys-
tem.
/etc/nsswitch.conf
Repository Configuration.
/etc/default/security
Security defaults configuration file.
SEE ALSO
chfn(1), id(1), login(1), logins(1M), su(1), getuid(2), crypt(3C), passwd(4), security(4), auth(5), auth.adm(1M),
auth.dce(5).
Managing Systems and Workgroups
Pluggable Authentication Modules (PAM)
pam_chauthtok(3), pam(3), pam.conf(4), pam_user.conf(4).
HP-UX Smart Card Login
scpin(1), scsync(1).
Section 1−−648 − 4 − HP-UX Release 11i: December 2000
___
___