netghost2482260
Contributor
Contributor

UAG Password Policy

If you logon to the appliance via the console you can see in the /etc/login.defs file the configured Password Aging  settings as shown below.

# Password aging controls:

#

# PASS_MAX_DAYS Maximum number of days a password may be used.

# PASS_MIN_DAYS Minimum number of days allowed between password changes.

# PASS_MIN_LEN Minimum acceptable password length.

# PASS_WARN_AGE Number of days warning given before a password expires.

#

PASS_MAX_DAYS 99999

PASS_MIN_DAYS 0

PASS_MIN_LEN 5

PASS_WARN_AGE 7

When you log on using the GUI and the admin account you dont see such granular options. My question is are the settings applied to users that log in via the gui interface as well

0 Kudos
4 Replies
markbenson
VMware Employee
VMware Employee

netghost24822605 No. The login definitions you are showing are for Photon users (i.e. "root").

The "admin" user for the UAG Admin UI is different. Expiry of the "admin" user account is controlled by the "Password Age" number of days in System Settings. It can be set via the admin UI or via PowerShell using the [General] adminPasswordExpirationDays setting.

markbenson
VMware Employee
VMware Employee

netghost24822605​ - does this answer your question?

0 Kudos
jonathanjabez
Hot Shot
Hot Shot

Password configuration is for the administration console admin user only and not the end users.

Number of days current administrator password is valid. The default is 90 days. Specify zero (0) if password will never expire.

https://docs.vmware.com/en/Unified-Access-Gateway/3.3.1/com.vmware.uag-331-deploy-config.doc/GUID-F7...

rajin_p
VMware Employee
VMware Employee

This user is "admin" which is used to login to UAG admin console and the password settings mentioned in the doc applies to this user.

0 Kudos