Bug ID 1036285: Enforce password expiry after local user creation

Last Modified: Nov 07, 2022

Bug Tracker

Affected Product:  See more info
BIG-IP All(all modules)

Known Affected Versions:
16.1.0, 16.1.1, 16.1.2, 16.1.2.1, 16.1.2.2

Fixed In:
17.0.0, 16.1.3

Opened: Jul 26, 2021
Severity: 3-Major

Symptoms

When a local user is created, the password is not expired. [root@bigip1:Active:Standalone] config # chage -l testuser Last password change : Feb 02, 2021 Password expires : never Password inactive : never Account expires : never Minimum number of days between password change : 0 Maximum number of days between password change : 99999 Number of days of warning before password expires : 7

Impact

The new user's password is not set to expired automatically.

Conditions

A local user is created

Workaround

None

Fix Information

When the local user is created, the password is expired.

Behavior Change

When the local user is created, the password is expired. When the user logins for the first time, the password change prompt appears.