Previous Topic: Specify the Password IntervalNext Topic: Grace Logins


Set Individual User or Group Password Intervals

You can also set the interval for specific users or profile groups. These settings override the systemwide interval for those users or groups. When the specified number of days is reached, CA ControlMinder informs the users that the current password has expired. The users can then immediately renew the password, or continue using the old password until the number of grace logins is reached. After reaching the number of grace logins, the users are denied access to the system and must contact the system administrator to select a new password.

To set or cancel the password interval for a user:

editusr {interval(NumDays) | interval‑}

To set or cancel the password interval for a group:

editgrp password{(interval(NumDays)) | (interval‑)}

The value of NumDays must be zero or a positive integer. An interval of zero disables password interval checking. Set the interval to zero if you do not want a password to expire. An interval of zero should only be used for users with low security requirements.

The interval‑ parameter cancels the password interval setting. If it is canceled and a value for interval is set in the user record, the value in the user record is used. Otherwise, the default set by the setoptions command is used. Use this parameter with the setoptions, chgrp, or editgrp commands only.