Mt Xia: Technical Consulting Group

Business Continuity / Disaster Recovery / High Availability
Data Center Automation / Audit Response / Audit Compliance
-
Current Location
-

css
  Downloads
    Security

-

digg Digg this page
del.icio.us Post to del.icio.us
Slashdot Slashdot it!

Business Web Site Hosting
$3.99 / month includes Tools,
Shopping Cart, Site Builder
www.siteox.com

FREE Domain Registration
included with Web Site Hosting
Tools, Social Networking, Blog
www.siteox.com

The programs referenced here provide the AIX administrator with the ability to automatically and dynamically set passwords for one or more users from a script or command line. These programs accept command line arguments consisting of the user name and new password (ASCII text), then set or change the specified user's password. At the same time the ADMCHG flag is reset so the user is not required to change their password the next time they login.

The programs that provide this functionality are a compiled "C" language utility and a shell script. The shell script provides an interface to the compiled utility that allows the AIX administrator to change a single users password, or multiple passwords by reading the username/password pairs from standard input or from a file.

When reading usernames and passwords from standard input or from a file, the field delimeter can be a pipe symbol (|), forward slash (/), comma (,), colon(:), space, or tab character. The standard input stream or data file is assumed to contain the fields: username, newpasssword : in that order. If the line of data from standard input or from a file is empty or begins with a hash mark (#), it is skipped.

The shell script interface provides numerous options and capabilities:

Shell script command line options and arguments

  • -c = The data source is command line arguments. Requires command line arguments of username followed by the new password to set for the specified user
  • -s = The data source is the standard input stream.
    Expected fields are: Username|newPasswd.
    Valid field delimeters: |/,:<space><tab>
  • -f datafile = The data source is read from the specified file.
    Expected fields are: Username|newPasswd.
    Valid field delimeters: |/,:<space><tab>
  • -v = Verbose mode, status messages are written to standard error as the script is executing.
  • -V = Very Verbose mode, Each command is displayed on standard error as it is executed.
  • username = Name of an existing user on the AIX system.
  • newpasswd = New password to set for the specified user

Compiled "C" language utility command line options and arguments

  • -c = Clears all flags set in the /etc/security/passwd file, equivalent to "-c" flag of pwdadm command. If not specified, the user is forced to change their password the next time a login command or an su command is given for the user.
  • -u username = Specifies the name of the user to set or change their password.
  • -p password = The ASCII text password to set or change for the specified user.

The source code for these programs can be purchased for $250 by contacting Dana French.

Automatically and dynamically set or change a users password from a script without prompting to re-enter the password and without requiring the user to change the password at the next login. Automatic and dynamic password changes without prompting to re-enter ( reenter ) the password and without requiring the user to change the password at the next login.
-
Password Script
-
 

FREE Domain Registration
included with Web Site Hosting
Tools, Social Networking, Blog
www.siteox.com

Business Web Site Hosting
$3.99 / month includes Tools,
Shopping Cart, Site Builder
www.siteox.com