bugs icon indicating copy to clipboard operation
bugs copied to clipboard

Published 20 hours ago verified publisher icon coreos

Enforcing password policies in CoreOS

Open Eshakk opened this issue 5 years ago • 2 comments

Issue Report

How can I enforce password policies in CoreOS ?

I tried to use pam_cracklib.so to enforce requirements like minimum number of uppercase letters, lowercase letters, other characters etc,. But, in journals, I got a message saying pam_cracklib.so is not found.

Under [pam] section in sssd.conf documentation, I did not find the above mentioned requirements to configure.

Can someone please help me understand how to configure password policies on CoreOS ?

Container Linux Version

$ cat /etc/os-release
NAME="Container Linux by CoreOS"
ID=coreos
VERSION=2023.5.0
VERSION_ID=2023.5.0
BUILD_ID=2019-03-09-0138
PRETTY_NAME="Container Linux by CoreOS 2023.5.0 (Rhyolite)"
ANSI_COLOR="38;5;75"
HOME_URL="https://coreos.com/"
BUG_REPORT_URL="https://issues.coreos.com"
COREOS_BOARD="amd64-usr"

Environment

CoreOS is running as a VM in a VMware environment.

Eshakk avatar May 14 '19 19:05 Eshakk

Container Linux does not include pam_cracklib. If you want to add PAM modules, the pam.conf format can take an absolute path for the module name (so e.g. write it to /opt or package it for torcx).

dm0- avatar May 14 '19 21:05 dm0-

@dm0-, Thank you for the info. Could you please show me an example ? Where should I add pam.conf file and what is the format ? Could you please point me to some documentation ?

Eshakk avatar May 15 '19 17:05 Eshakk