Previous Topic: HP-UX Trusted Mode Tab

Next Topic: AIX Specific Tab


HP-UX Password Aging Tab

This tab lets you specify password attributes that are specific to an HP UNIX server.

The fields in this property sheet are listed below:

Password Options

Specifies the password options for the user. The valid values are:

No Restrictions (Normal Behaviour)

This is the default. The user defines the password and no password aging is in effect.

Force Password Change at Next Login

Forces the user to select a new password at next login. Once the change is made, the behaviour reverts to the default (no restrictions). To set up password aging on a user account when this option is selected, the administrator must change the user's password options after the user has logged in and changed his or her password. This option is most commonly used when setting up new user accounts.

Allow Only Super-User To Change Password

Means that all passwords are selected by the super-user and assigned to each individual user. Users cannot modify passwords and password aging is not in effect. This option is commonly used when many users have logins on the system and the administrator needs to ensure that password choice maintains system security.

Set Up Periodic Password Aging

Must be selected before you can establish minimum and maximum expiration times for passwords.

Password Expiration Time (1-63 Weeks)

Specifies the maximum number of weeks that can expire before the user must change passwords.

The user can change the password before it is due to expire. If it is not changed by the expiration time, the user will have to set up a new password before being allowed to log into the system.

Range: 1 - 63 weeks

Minimum Time Between Password Changes (0-62 Weeks)

Specifies the minimum number of weeks that must expire before the user can change passwords.

Whenever a user changes a password, a date stamp is established. The user cannot change the password again until the minimum time between changes has passed.

To reduce the risk of compromising system security, enter a non-zero value in this field. A non-zero value prevents the immediate reuse of recently expired passwords. A zero value in this field is valid, but it defeats the purpose of password aging as a security measure by allowing users to revert immediately back to their old password.

Note: If the user needs to change the password before the minimum time expires, the administrator must create a new password.

Range: 0 - 62 weeks

Force Password Change At Next Login

Select this option to force the user to choose a new password at next login. Once the user has selected a new password, the system reverts to the default mode of No Restriction.

To set up password aging on a user account when this option is selected, the administrator must change the user's password options after the user has logged in and changed his or her password.

This option is most commonly used when setting up new user accounts.