Password policies hardening.

Scenario: You have a task of setting user password policies where user should not use the same password with an history of n times in RHEL.

Solution: Following are the following steps to achieve the policy.

  1. Just open the file /etc/pam.d/system-auth on your system.
  2. Now you will see a line contains -password sufficient.
  3. Append this at the end of the line

                  md5 shadow remember=7 (I represented 7 as an example.)

        4. Now save that file and quit. Now your system will remember the last 7 password set and won’t let the user to set the same password. If he or she do so they will get an Error Message.



Leave a Reply

Please log in using one of these methods to post your comment: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s

%d bloggers like this: