Password Aging

mr-paradox

Passage is now OpenSource

Get Screenshots | Documentation | Passage | Baan Session | License

The intent of "passage" is to enforce password aging in systems where users do not normally log into unix. Programs such as Baan have no method to display OS level messages that happen prior to authentication, so once an account expires there is no way for the user to reset / change their password.

Advantages

Copious logging
Strong focus on security
Allow users to change their password after the expiration date
Five day warning prior to password expiration
Force password change every 90 days

Components

The passage source - used to create the passage binary. (See the documentation)
The Baan session - used to call the passage binary in a baan setting
The license - just some verbage to make me feel better about myself =)

Call for help - Looking for folks interested in taking passage to the next level.

configuration file
variable warning period
variable password change period
change on create vs change after first 90 days
ability to work outside $BSE
work on trusted and non-trusted systems
or anything else you'd like to see...

Contact paradoxinfo@mr-paradox.com - or - follow up on baanboard forums