Originally posted by: hildward

Hi all,

I am creating password restrictions for all of our users, but I'm encountering problems:

To start; this is how the "/etc/security/user" looks like:
User
        maxage=26
        minlen=8
        maxrepeats=4
        minalpha=1
        mindiff=3
        minother=1
        histexpire=52
        histsize=6
        loginretries=3

Now, after doing a "pwdadm -f ADMCHG <user>", that particular user tries to login and enters his new password, for instance "password1504". But for some reason this warning keeps popping up:

3004-602 The required password characteristics are:
        a maximum of 4 repeated characters.
        a minimum of 3 characters not found in old password.
        a minimum of 1 alphabetic character.
        a minimum of 1 non-alphabetic character.
        a minimum of 8 characters in length.

3004-603 Your password must have:
        a minimum of 1 non-alphabetic character.

Which doesn't make any sense, because I have 4 non-alphabetic characters! (trying "password--++" doesn't work neither) However, when entering "1504password", with the digits in front, it suddenly works?

Does anyone have an idea why AIX is getting confused like this? Strangest thing is that this doesn't occur every time...
(We are using AIX 5.3. )

Thanks!

Originally posted by: JakobRiisHenriksen

Depending on the password algorithm used the password might be truncated to 8 characters.

So password1504 becomes password - which fails the requirements. 

Originally posted by: hildward

Hi,

Thanks! That did the job!