CentOS 8.x Configure password complexity

From Notes_Wiki
Revision as of 15:08, 11 July 2021 by Saurabh (talk | contribs) (Created page with "<yambe:breadcrumb self="Configure password complexity">CentOS 8.x System Administration|System Administration</yambe:breadcrumb> =CentOS 8.x Configure password complexity= To...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

<yambe:breadcrumb self="Configure password complexity">CentOS 8.x System Administration|System Administration</yambe:breadcrumb>

CentOS 8.x Configure password complexity

To configure password complexity in CentOS 8 use:

  1. Install required packages
    dnf -y install authselect-compat
  2. Create authselect profile based on sssd for configuring password-complexity
    authselect create-profile sssd-prod1 -b sssd
    This creates new authentication profile at '/etc/authselect/custom/sssd-prod1'
  3. List the profiles with
    authselect list
  4. See current profile with
    authselect current
  5. Select the new profile using:
    authselect select custom/sssd-prod1
  6. Configure password complexity using:
    authconfig --enablereqlower --enablerequpper --enablereqdigit --enablereqother --passminlen=8 --passmaxrepeat=3 --update
    This ensures that various files in /etc/pam.d require use of pam_pwquality.so. This also updates /etc/security/pwquality.conf.d/10-authconfig-pwquality.conf with required password complexity configuration.


Refer: