Endpoint Administration Guide for UNIX › Managing User Passwords › Defining Password Policies › Changing Passwords
Changing Passwords
CA Access Control includes the executable ACInstallDir/bin/sepass (where ACInstallDir is the installation directory for CA Access Control, by default /opt/CA/AccessControl ), with which most users should change their passwords (instead of with /bin/passwd).
- Only sepass ensures that the new password matches CA Access Control password policies. And only sepass updates the database with the new password and the date on which the password was changed. In addition, sepass performs the same functions as /bin/passwd.
- The original /bin/passwd executable should not be used unless you choose to discard the password quality checks performed by CA Access Control. In this case, you can continue to use the original /bin/passwd, and CA Access Control accepts the system's password without performing any quality checks on passwords.
You can also change passwords using selang. Enter the following command to assign a password to a user:
chusr userName password(string)
Note: If you change another user's password (as an administrator) and password checking is enabled, the user must change the password at the next login.
|
Copyright © 2012 CA.
All rights reserved.
|
|
