checkpwd Command Check a Password for Compliance
Valid in the AC environment
capamsc141
Valid in the AC environment
Use the checkpwd command to check a user's password for compliance with password rules. This check does not change the password.
To use this command you must be a superuser with the ADMIN attribute.
A new password is accepted or rejected according to
PAM Server Control
password rules:- If a new password is accepted, the following success message displays:Changing userName's password is permitted.
- If a new password is rejected, the following fail message displays:Changing userName's password is denied. denied_reasonWheredenied_reasonis the actual password rule that did not pass.For example:Changing JDoe's password is denied. Too few lowercase letters in password.
Only the first rule that the password fails appears in the
denied_reason
. If, for example, a password is too short, and
the password has too few capital letters, only Password is too short
appears.This command is not available when seos is down. For more information about password rules, see the
Endpoint Administration Guide
for your OS.This command has the following format:
checkpwd userName password(newPassword)
- userNameSpecifies the name of thePAM Server Controluser whose new password you want to check.
- password(newPassword)Specifies the password you want to check.