04-17-2013 05:44 PM
I am using HPUX 11.23 and 11.31.
Shadow mode is configured /etc/shadow.
I have enabled "AUTH_MAXTRIES=3" i /etc/default/security.
It is working fine.
How can check how many failure attempts a user tried and how to clear that.
Actually I am looking for a Linux command like "faillog" in hpux.
If there no command in hpux like faillog. Please let me know how can we do this.
Solved! Go to Solution.
04-18-2013 12:48 AM
Yes we can see bad login details from lastb.
But I am asking some thing different.
For example, In linux, if you can use the command "faillog" to see max fail login attemps. and using same commnad you clear the fail login attempts. So that user can log in to the server using same password.
So I am looking for the command in HPUX for same purpose.
If there is no command in HPUX, then how we can do this.
04-19-2013 12:15 AM
>So I am looking for the command in HP-UX for same purpose.
Have you looked at:
04-19-2013 02:52 AM
With "userstat -a maxtries", you will see a list of all users that are currently locked because of too many failed login attempts, and also the current number of failed attempts for those users.
If you want to check the current number of failed logins for a specific user, then "userdbget -u <username> auth_failures" should give you that information.
The AUTH_MAXTRIES paragraph in security(4) man page says that an account that has been locked because of too many failed logins can be unlocked with:
userdbset -d -u <username> auth_failures
(That example was not quite as easy to find as I expected, as neither userdbset(1M) nor userdbget(1M) man page talk about the auth_failures attribute at all. A helpful example would have been nice, since this might be a common question in high-security environments.)