Manualshelf

HP-UX Standard Mode Security Extensions Release Notes

ManualsBrandsHP ManualsSoftwareHP-UX Security Products and Features Software
12345678910
HP-UX Standard Mode Security Extensions Release Note
Whats in This Version
Chapter 1 9
Table 1-2 lists the existing security attributes that can now also be configured on a per-user
basis.
User Database for Per-User Configurations
In previous HP-UX systems, many security attributes and password policy restrictions were
set only on a system-wide basis. These security features applied only for all users or none of
the users.
Now several attributes can optionally be configured uniquely for each user overriding the
system-wide defaults for specified users. See Table 1-2. To make per-user configurations, use
the userdbset command. To access this information, use the userdbget command. Refer to
the userdbget (1M) and userdbset (1M) manpages for more information.
The per-user information is stored in a user database in the /var/adm/userdb directory. The
user database is described in the userdb (4) manpage.
Not all attributes can have a per-user value. Refer to the security (4) manpage which explains
all the attributes.
Table 1-2 Revised Security Features and Attributes Now Also Available on
a Per-User Basis
Existing Security Features Attribute name
Specifies the minimum number of
lower-case, upper-case, digits, or special
characters required in a password when
changed.
PASSWORD_MIN_LOWER_CASE_CHARS
PASSWORD_MIN_UPPER_CASE_CHARS
PASSWORD_MIN_DIGIT_CHARS
PASSWORD_MIN_SPECIAL_CHARS
Specifies the minimum number of
characters required in a new password.
MIN_PASSWORD_LENGTH
Specifies the umask value for sessions to
be initiated through pam_unix or
pam_hpsec.
UMASK
Specifies the number of simultaneous
logins allowed per user.
NUMBER_OF_LOGINS_ALLOWED