Linux Password Policy
by osama.mansoor from LinuxQuestions.org on (#5P7YC)
Hi Expert,
I am not very expert in Linux so please advise me.
I have Oracle Linux 7.6 (Unbreakable) and wanted to configured Password Policy according to my organization therefore I have altered three files 1. Login.defs 2. Pwquality.conf 3. system-auth.
In Login.defs i have changed the value
PASS_MAX_DAYS = 3
PASS_MIN_DAYS = 1
PASS_MIN_LEN = 9
PASS_WARN_AGE 1
Pwquality
minlen = 9
minclass = 2
minrepeat = 2
System-auth
added line after Password sufficient remember=3
Problem :
1. when i tired to created user after applying changes from root i can set the password of 7 character also with out special character so means policy is not working ?
2. When i ran the command chage -l user1 (Created Before Applying changes) it shows default values) however when i ran the same command on user5 which i created after applying changes it shows my applicable values.
Please correct me what i did wrong in this configuration.
I am not very expert in Linux so please advise me.
I have Oracle Linux 7.6 (Unbreakable) and wanted to configured Password Policy according to my organization therefore I have altered three files 1. Login.defs 2. Pwquality.conf 3. system-auth.
In Login.defs i have changed the value
PASS_MAX_DAYS = 3
PASS_MIN_DAYS = 1
PASS_MIN_LEN = 9
PASS_WARN_AGE 1
Pwquality
minlen = 9
minclass = 2
minrepeat = 2
System-auth
added line after Password sufficient remember=3
Problem :
1. when i tired to created user after applying changes from root i can set the password of 7 character also with out special character so means policy is not working ?
2. When i ran the command chage -l user1 (Created Before Applying changes) it shows default values) however when i ran the same command on user5 which i created after applying changes it shows my applicable values.
Please correct me what i did wrong in this configuration.