I'm stuck trying to get a forced password change on the first login, using
the advance security features. I've edited the default database using
/tcb/bin/edauth -dd default and added:
d_admin_preeexpire_psw
but alas when I make a new account it seems to ignore this setting. I've
also tried adding u_psw_change_reqd but still no luck. What am I missing?
Thanks in advance.
Here is my default file: (Taken from /tcb/bin/edauth -g -dd)
default:\
:d_name=default:d_pw_expire_warning#3456000:d_pw_site_callout=/tcb/bin/pwpolicy:d_boot_authenticate_at_:\
:d_secclass=c2:\
:d_admin_preexpire_psw:\
:u_pwd=*:u_cmdpriv=boot,ping,printerstat,tape:u_syspriv=execsuid,chmodsugid:\
:u_basepriv=execsuid,chmodsugid:\
:u_minchg#0:u_minlen#6:u_maxlen#10:u_exp#15724800:\
:u_life#31449600:u_pickpw:u_genpwd:u_restrict_at_:\
:u_nullpw_at_:u_pwdepth#5:u_genchars:u_genletters:\
:u_maxtries#5:\
:t_maxtries#10:t_logdelay#2:\
:\
::u_unlockint#86400:t_unlockint#86400::chkent:
Brian
bsprings_at_sunyrockland.edu
Received on Thu Aug 06 1998 - 14:47:02 NZST