Cover V06, I06
Article
Figure 1
Figure 2
Figure 3
Figure 4
Figure 5
Listing 1
Listing 2
Listing 3
Sidebar 1
Sidebar 2
Sidebar 3
Sidebar 4

jun97.tar

Sidebar 2: Man Page for getprpw

getprpw - Display User's Protected Password Database Man page

NOTE. This is an undocumented command and not supported for direct use by end users.

The documentation below has been gathered from multiple sources, inferred or developed empirically. No warranty is provided for its accuracy, completeness or use.

NAME

getprpw - display user's protected password database

USAGE

getprpw [-r] [-m option[,option]] logonid

OPTIONS

-r raw display of the protected database field values

-m display the value of the option given. If -m is not specified, all protected database fields will be displayed.

Boolean values are returned as YES, NO, or DFT (default). A -1 value indicates that the field is undefined.

The following values will be displayed or can be selected using the -m option:

uid logonid's uid

bootpw boot authorization flag

audid audit id

audflg audit flag

mintm minimum time allowed between password changes

exptm password expiration time

lftm password lifetime

acctexp account expiration time

spwchg time of last successful password change

upwchg time of last unsuccessful password change

llog maximum time allowed between logins

expwarn password expiration warning time

usrpick user allowed to pick passwords

nullpw null passwords allowed

maxpwln maximum password length allowed

rstrpw restricted passwords - checked for triviality

syspnpw system generates pronounceable passwords

admnum administrative number assigned

syschpw system generates character only passwords

sysltpw system generates letter only passwords

timeod time of day allowed for login

slogint time of last successful login

ulogint time of last unsuccessful login

sloginy terminal of last successful login

uloginy terminal of last unsuccessful login

culogin consecutive number of unsuccessful logins

umaxlntr maximum number of unsuccessful logins allowed

alock administrative lock

lockout bit string representing reason account is disabled

1 = true, 0 = false

bit 1 password lifetime exceeded

2 time between logins exceeded

3 account absolute lifetime exceeded

4 unsuccessful logon attempts exceeded

5 null password set but not allowed

6 administrative lock

7 password is "*"

RETURN VALUES

0 success

1 user not privileged

2 incorrect use

3 protected database not found for user


 

© 2002 CMP Media LLC. All Rights Reserved.
www.sysadminmag.com