03-21-2008 04:51 AM
I want to convert the system to a Trusted system, and SAM will not allow me to do this because of the shadow passwords.
Can a system that has had the pwconv command ran on it be converted to a Trusted system?
03-21-2008 05:16 AM
You either run a shadow password implementation or a TCB one. If you wish to transition to TCB, you can run 'pwunconv(1m)' to disable shadow passwords and then convert to a TCB.
I would point out that as of 11.31, Trusted system implementations are deprecated.
Bill Hassell has some good comments in this thread:
03-21-2008 05:26 AM
>>system with shadow passwd can not be TCB
this could make sm difference in understanding ;)
03-21-2008 04:03 PM
03-21-2008 07:04 PM
provides you most of the features of trusted systems really except for generating passwords. You can restrict certain users to certain passwords. you can lock the account after a certain number of retries. It is configured with a command called
userdbset and userdbget look them up.
If you attend the HPUX Security class we cover the features there.