I need to change user password on Solaris10 2 servers.
With the same password I can change it just only one.
Try to check everything but not found difference??
password pattern: abcdeFgh9Jk
server1 check all characters but server2 check only first 8 characters.Why??
I think solaris just check only first 8 char.
error msg on server2 ->> passwd: The first 8 characters of the password must contain at least 1 numeric or special character(s).
Anyone have any idea for this case?
1st question to you.. isn't your server 1 checks for password history?
and according to the error messages, your 1st 8 char should have at leasta special char or numeric, which does not match
By default with Solaris 10 and older the password is truncated to the first eight characters before further processing. Remaining ones are simply ignored.
There is nothing wrong with server1 checking the ninth character. As I wrote, the default configuration truncates to eight. You do not give evidence server1 uses the default security policy configuration.
You would need to compare /etc/security/policy.conf files, especially the CRYPT_DEFAULT parameter.
It can solve my problem, but have some question incredible?
in policy.conf we change
CRYPT_DEFAULT=1 to 2a [it check password more than first 8 chars]
but when change it back (CRYPT_DEFAULT=1 ) [it still check password more than first 8 chars]???