I had some problems with user account security setting with HPUX 11.23
IA64 server.

We had started the UAT (User Acceptance Test) of our platform
migration, about 20-30 test userids have been created.
Now I need to zap all these userid passwords to a common temporary
password.

My question is how to clear all historical record of the passwords
used, while still maintaining the security policy?

Will changing the attribute PASSWORD_HISTORY_DEPTH from larger value to
a smaller one, and revert back to original value, would that clear the
older passwords history record?

Hey;

On 2005-03-28, Ultra Kiasu <ultrakiasu@hotmail.com> wrote:
>
> My question is how to clear all historical record of the passwords
> used, while still maintaining the security policy?

You'll have to search for it, but the password history for each user
is located on the system under the user's name. Unfortunately, I don't
have access to a TCB enabled HP system at the moment, so I can't find
it for you. Two places to look will be under /etc/default and under
/tcb.

Once you find the file, simply blast the history file.

Sorry I couldn't narrow it down for you, but I can at least confirm
that what you're looking for is possible.

> Will changing the attribute PASSWORD_HISTORY_DEPTH from larger value to
> a smaller one, and revert back to original value, would that clear the
> older passwords history record?

No; not as far as I know at any rate.

Doug