0% found this document useful (0 votes)
8 views2 pages

Ch-3 User and Group Lec-3

User passwords are stored in the /etc/shadow file, with specific policies governing password age, warnings, and expirations. The 'chage' command is used to manage and check user password policies, including forcing immediate password changes upon login. Future user password policies can be configured in the /etc/login.defs file.
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
0% found this document useful (0 votes)
8 views2 pages

Ch-3 User and Group Lec-3

User passwords are stored in the /etc/shadow file, with specific policies governing password age, warnings, and expirations. The 'chage' command is used to manage and check user password policies, including forcing immediate password changes upon login. Future user password policies can be configured in the /etc/login.defs file.
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 2

CH-3 Lec-3 User Password

--> all user's password is stored in /etc/shadow file

--> user's Password policy:

root: user'sname
$6$HMKUm0tW9HMqoZQW$GDmzk9HHUWIwU.F.ScXIOKvf.94ocHN0qZ.fFQIXCUqWfojHfn7QMnGbwVYO/
iXx0YYpNSVqibqwAN2h/.QsS. encrypted password of user
:19130 last password change
:0 min password age
:99999 max password age
:7 warn days
: inactive days
: expiry date of account

-->Last Password change (-d): it will show the days since epoch day i.e 1st jan
1970
-->Min password age (-m) : 0 : a user can anytime change his password.
--> Max password age (-M) :30: a user's password will be valid for such days
--> Warn days (-W) : 7 : 23 rd day user will have warning that password is about to
expire in 7 days
--> inactive days (-I) : 2 : password will work even after password age is expired
i.e 32 days
--> expiry date(-E): expiry date of account but this is to be provided in not only
days but in date format which is YYYY-MM-DD

--> how to manage password policy of a user:


command : chage --> change age
--> how to check password policy of a user:
syntax: chage -l username

--> at any moment if we want to configure that user's password must be changed at
the time of login

--> chage -d 0 user'sname --> so system will consider that this user's account is
quit old and system will prompt the message of changing the password immediately at
the time of user's login.

--> Topic -2 : How to chage password policy for user that suppose to be created in
future:
--> for that we have to configure password policy in configuration file:
/etc/login.defs (login definitions configuration file)

You might also like