Defines the number of days after a password exceeds its maximum age
before the user account gets locked.
If the user does not change their password within this period of time,
- their account gets disabled.
+ their account becomes inactive.
This value is stored in the shadow password file.
For more information, see <citerefentry>
<refentrytitle>shadow</refentrytitle><manvolnum>5</manvolnum>
</term>
<listitem>
<para>
- defines the number of days after the password exceeded its maximum
- age during which the user may still login by immediately replacing
- the password. This grace period before the account becomes inactive
- is stored in the shadow password file. An input of 0 will disable an
- expired password with no delay. An input of -1 will blank the
- respective field in the shadow password file. See <citerefentry>
- <refentrytitle>shadow</refentrytitle><manvolnum>5</manvolnum>
- </citerefentry> for more information.
- </para>
- <para>
- This option requires a <filename>/etc/shadow</filename> file.
- A <filename>/etc/shadow</filename> entry will be created if
- there were none.
+ Defines the number of days after a password exceeds its maximum age
+ during which the user can still log in by immediately changing their password.
+ If the user does not change their password within this period of time,
+ their account becomes inactive.
+ This value is stored in the shadow password file.
+ </para>
+ <para>
+ A value of 0 disables the account when the password expires, with no delay.
+ </para>
+ <para>
+ A value of -1 empties the respective field in the shadow password file,
+ which means that the inactivity period is not enforced.
+ </para>
+ <para>
+ This option requires the <filename>/etc/shadow</filename> file.
+ If no entry exist in the <filename>/etc/shadow</filename> file,
+ the system will automatically create one.
</para>
</listitem>
</varlistentry>
projects / thirdparty / shadow.git / commitdiff
