This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
emilli_xill
Participant
‎2024-03-25 05:10 AM

Password policy settings in a text file

Hello everyone!

I need to control password policies via another application. This app can read text file and compare it with "ideal configuration". So, I need to know in which files I can find information about such policies (GAIA OS and Smart Console). 

For example, I need to know if "The account will be blocked after ??? unsuccessful attempts" or "You need to change the password every ??? days" or files describing settings from GaiaPortal - User management - Password policy..

I know I can find some information in "shadow" file, but there is not enough information there..

I'm not looking for a way to find a file with unencripted passwords! - I'm looking for text files that describe password policies.

Also I need to see audit log files (for example, all actions performed under expert-shell or login attempts). I found audit logs in $FWDIR/log, but they are encripted. 

So could you please explain how can I do this, or maybe all this information will be encripted for security reasons and I won't be able to access it in a readable form?

Thank you!

Labels
0 Kudos
5 Replies
_Val_
Admin
Admin
‎2024-03-25 05:20 AM

Passwords are never stored as cleartext, so you cannot verify them by looking at the text tive.

You may want to specify the use case and the desired outcome in some better terms, if you want answers.

0 Kudos
emilli_xill
Participant
‎2024-03-25 05:58 AM
In response to _Val_

Of course, I understand about passwords.. 😱 I'm looking for information about password policies, not passwords themselves. Text files which describe what requirements apply to passwords, how often to change them, what to do if there are many login attemps etc. 

Sorry, English is not my native language and sometimes it is hard to say in a way that is clear 😞

0 Kudos
Alex-
MVP Silver
MVP Silver
‎2024-03-25 06:26 AM
In response to emilli_xill

Shell access is logged into /var/log/messages so you could syslog them.

In expert, you could run clish -c "show password-controls all" to get the current status of the appliance and send this to a file for further processing.

G_W_Albrecht
MVP Silver
MVP Silver
‎2024-03-25 06:53 AM
In response to Alex-

And Audit logs can be found in Legacy SmartView Tracker, Management Tab. With File > Export... they will be saved as .txt.

 

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
_Val_
Admin
Admin
‎2024-03-25 06:49 AM
In response to emilli_xill

I see you already get an answer that you consider useful. I just want to elaborate on that.

To see the password policy settings on Gaia, you need to query it from the config. See the admin guide for more details: https://sc1.checkpoint.com/documents/R81.20/WebAdminGuides/EN/CP_R81.20_Gaia_AdminGuide/Content/Topi...

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events