How To
Summary
Step-by-step instructions to change the maximum length of user name, group name, or password.
Objective
Steps
#getconf LOGIN_NAME_MAX
9
|
# lsattr -El sys0 -a max_logname
max_logname 9 Maximum login name length at boot time True |
- The change takes effect after the next system restart.
- The maximum allowed value for max_logname is 256.
# chdev -lsys0 -a max_logname=64
sys0 changed
|
#getconf LOGIN_NAME_MAX
64
|
# lsattr -El sys0 -a max_logname
max_logname 64 Maximum login name length at boot time True |
- The default AIX authentication uses the crypt function to authenticate users.
- The crypt function only uses the first 8 characters of a password.
- All Loadable Password Algorithms (LPAs) support passwords longer than eight characters.
- LPAs are defined in /etc/security/pwdalg.cfg.
- smd5: 255
- ssha: 255
- sblowfish: 72
- LPAs are defined in /etc/security/pwdalg.cfg.
- The ssha256 and ssha512 methods are common requirements for many security standards since they provide more security than default crypt.
# getconf PASS_MAX
255
|
# lssec -f /etc/security/login.cfg -s usw -a pwd_algorithm
usw pwd_algorithm= |
# chsec -f /etc/security/login.cfg -s usw -a "pwd_algorithm=ssha256"
|
# lssec -f /etc/security/login.cfg -s usw -a pwd_algorithm
usw pwd_algorithm=ssha256 |
minlen: Defines the minimum length of a password. The value is a decimal integer string. The default is a value of 0, indicates no minimum length. The maximum value allowed is PW_PASSLEN attribute.
PW_PASSLEN: Defined in /usr/include/userpw.h. The value of the PW_PASSLEN attribute is determined by the system-wide password algorithm that is defined in /etc/security/login.cfg .
The minimum length of a password is determined by the minlen attribute and should never be greater than the PW_PASSLEN attribute
|
/home/userA $: passwd
/home/userA $: userA's New password: My 15Char#ExPa$ 3004-602 The required password characteristics are:
a maximum of 8 repeated characters. a minimum of 4 alphabetic characters. a minimum of 4 lower case alphabetic characters. a minimum of 0 upper case alphabetic characters. a minimum of 2 non-alphabetic characters. a minimum of 2 digits. a minimum of 15 characters in length. 3004-603 Your password must have: a minimum of 15 characters in length. |
SUPPORT |
---|
If you require more assistance, use the following step-by-step instructions to contact IBM to open a case for software with an active and valid support contract. 1. Document (or collect screen captures of) all symptoms, errors, and messages related to your issue. 2. Capture any logs or data relevant to the situation. 3. Contact IBM to open a case: -For electronic support, see the IBM Support Community: 4. Provide a clear, concise description of the issue. - For more information, see: Working with IBM AIX Support: Describing the problem. 5. If the system is accessible, collect a system snap, and upload all of the details and data for your case. - For more information, see: Working with IBM AIX Support: Collecting snap data |
Related Information
Document Location
Worldwide
Was this topic helpful?
Document Information
Modified date:
05 May 2022
UID
ibm10960582