Changing an AIX password via script?

Question

I am trying to change a password of a user via script. I cannot use sudo as there is a feature that requires the user to change the password again if another user changes their password.

AIX is running on the system.

unfortunately, chpasswd is unavailable.

I have expected installed, but I am having trouble with that also.

here is what I thought would work

echo "oldpassword\nnewpasswd123\nnewpasswd123" | passwd user

However once run the script I am prompted with please enter user's old password shouldn't they all be echoed in?

I am a beginner with shell scripting and this has been baffled.

Note that AIX isn't Linux; you should update your question to clarify which you are asking about. — rakslice, Feb 14 '17 at 21:59

score 76 · Answer 1 · answered Jan 08 '15 at 11:14

76

You can try:

echo "USERNAME:NEWPASSWORD" | chpasswd

answered Jan 08 '15 at 11:14

Mandar Shinde

1,735
4
20
28

4

For it to work for me I had to change it to: `echo "USERNAME:NEWPASSWORD" | sudo chpasswd` when executing through a non sudo parent script – Mattisdada Nov 12 '15 at 23:36
8

`chpasswd` to me seems like the right answer. Worked for me setting up a Docker image. I like the following (in bash) to avoid the 'echo' noise: `chpasswd <<<"$USERNAME:$PASSWORD"` – Andrew Wolfe Nov 19 '15 at 15:58

Juan Diego Godoy Robles · Answer 2 · 2016-02-02T09:21:54.190

21

Use GNU passwd stdin flag.

From the man page:

   --stdin
          This option is used to indicate that passwd should read the new password from standard input, which can be a pipe.

NOTE: Only for root user.

Example

$ adduser foo 
$ echo "NewPass" |passwd foo --stdin
Changing password for user foo.
passwd: all authentication tokens updated successfully.

Alternatively you can use expect, this simple code will do the trick:

#!/usr/bin/expect
spawn passwd foo
expect "password:"
send "Xcv15kl\r"
expect "Retype new password:"
send "Xcv15kl\r"
interact

Results

$ ./passwd.xp 
spawn passwd foo
Changing password for user foo.
New password: 
Retype new password: 
passwd: all authentication tokens updated successfully.

edited Feb 02 '16 at 09:21

answered Jan 08 '15 at 10:26

Juan Diego Godoy Robles

14,447
2
38
52

yeah i tried that too: `"echo oldpassword\nnewpasswd123\nnewpasswd123" | passwd --stdin user` i get passwd: illegal option -- - – Grushton94 Jan 08 '15 at 10:31
I su'd to root an i got the same "illegal option -- -" – Grushton94 Jan 08 '15 at 10:34
1

seems like it, a lot of people's suggestions look like they should work, but don't. – Grushton94 Jan 08 '15 at 10:44
Doesn't work on Ubuntu 16.04: `passwd: unrecognized option '--stdin'` – Dr. Gianluigi Zane Zanettini Sep 23 '16 at 08:09
Newer versions do not support --stdin (e.g. openSUSE Leap 42.1; it worked in 12.1 but doesn't work anymore). – Vercingatorix Sep 23 '16 at 20:03
this `expect` example do not work with the most locales. Maybe set it to `C`? – 12431234123412341234123 Jun 23 '17 at 15:37

score 7 · Answer 3 · edited Mar 12 '16 at 00:18

7

In addition to the other suggestions, you can also achieve this using a HEREDOC.

In your immediate case, this might look like:

$ /usr/bin/passwd root <<EOF
test
test
EOF

edited Mar 12 '16 at 00:18

dho

2,310
18
20

answered Mar 11 '16 at 20:28

Andrew Yasinsky

185
2
4

score 6 · Answer 4 · edited Jun 30 '17 at 17:23

6

You need echo -e for the newline characters to take affect

you wrote

echo "oldpassword\nnewpasswd123\nnewpasswd123" | passwd user

you should try

echo -e "oldpassword\nnewpasswd123\nnewpasswd123" | passwd user

more than likely, you will not need the oldpassword\n portion of that command, you should just need the two new passwords. Don't forget to use single quotes around exclamation points!

echo -e "new"'!'"passwd123\nnew"'!'"passwd123" | passwd user

edited Jun 30 '17 at 17:23

Eric Citaire

4,355
1
29
49

answered Jun 30 '17 at 12:47

Elliot Beaumont

61
1
1

What if the password contains a "\n"? Such as `my@secret\npasword123` ? – Eduardo Baitello Nov 17 '17 at 14:27
Great answer! Worked fine for me on Ubuntu. I had a similar requiremnt, but for first time setting (and not changing) a user's password. The mention of \n character along with -e option to seperate out the reply to the 2 password prompts really helped me. – Binita Bharati Jan 12 '18 at 11:46

score 3 · Answer 5 · answered Jan 08 '15 at 10:22

3

You can try :

echo -e "newpasswd123\nnnewpasswd123" | passwd user

answered Jan 08 '15 at 10:22

TehesFR

140
2
15

I have the following code in a bash script and it works fine : `useradd -s /bin/bash -g www-data -d /var/www/$vhost $Name; echo -e "$sshPasswd\n$sshPasswd" | passwd $Name; id $Name` – TehesFR Jan 08 '15 at 10:26

score 3 · Answer 6 · answered Mar 21 '18 at 18:14

Just this

passwd <<EOF
oldpassword
newpassword
newpassword
EOF

Actual output from ubuntu machine (sorry no AIX available to me):

user@host:~$ passwd <<EOF
oldpassword
newpassword
newpassword
EOF

Changing password for user.
(current) UNIX password: Enter new UNIX password: Retype new UNIX password: 
passwd: password updated successfully
user@host:~$

Loren · Answer 7 · 2017-12-20T18:08:27.920

This is from : Script to change password on linux servers over ssh

The script below will need to be saved as a file (eg ./passwdWrapper) and made executable (chmod u+x ./passwdWrapper)

#!/usr/bin/expect -f
#wrapper to make passwd(1) be non-interactive
#username is passed as 1st arg, passwd as 2nd

set username [lindex $argv 0]
set password [lindex $argv 1]
set serverid [lindex $argv 2]
set newpassword [lindex $argv 3]

spawn ssh $serverid passwd
expect "assword:"
send "$password\r"
expect "UNIX password:"
send "$password\r"
expect "password:"
send "$newpassword\r"
expect "password:"
send "$newpassword\r"
expect eof

Then you can run ./passwdWrapper $user $password $server $newpassword which will actually change the password.

Note: This requires that you install expect on the machine from which you will be running the command. (sudo apt-get install expect) The script works on CentOS 5/6 and Ubuntu 14.04, but if the prompts in passwd change, you may have to tweak the expect lines.

score 1 · Answer 8 · answered Jan 08 '15 at 10:33

Here is the script... 

#!/bin/bash
echo "Please enter username:"
read username
echo "Please enter the new password:"
read -s password1
echo "Please repeat the new password:"
read -s password2

# Check both passwords match
if [ $password1 != $password2 ]; then
echo "Passwords do not match"
 exit    
fi

# Does User exist?
id $username &> /dev/null
if [ $? -eq 0 ]; then
echo "$username exists... changing password."
else
echo "$username does not exist - Password could not be updated for $username"; exit 
fi

# Change password
echo -e "$password1\n$password1" | passwd $username

Refer the link below as well...

http://www.putorius.net/2013/04/bash-script-to-change-users-password.html

thanks, but it's just this line `echo -e "$password1\n$password1" | passwd $username` that my system doesn't like — Grushton94, Jan 08 '15 at 10:46
Did you provided the new password here? echo -e "$password1\n$password1" | passwd $username — Ikruzzz, Jan 08 '15 at 10:59

score 1 · Answer 9 · answered Jun 17 '15 at 10:29

1

You can try

LINUX

echo password | passwd username --stdin

UNIX

echo username:password | chpasswd -c

If you dont use "-c" argument, you need to change password next time.

answered Jun 17 '15 at 10:29

Ahmet Mecid Kaya

49
6

`echo username:password | chpasswd -c` throws error – Taz May 07 '18 at 21:54

score 1 · Answer 10 · answered Aug 22 '17 at 04:10

1

If you can use ansible, and set the sudo rights in it, then you can easily use this script. If you're wanting to script something like this, it means you need to do it on more than one system. Therefore, you should try to automate that as well.

answered Aug 22 '17 at 04:10

itengineer

36
2

score 0 · Answer 11 · answered Jul 13 '17 at 01:33

0

For me this worked in a vagrant VM:

sudo /usr/bin/passwd root <<EOF
12345678
12345678
EOF

answered Jul 13 '17 at 01:33

Abhradip Mukherjee

21

This is still a simple answer if you can get over the word sudo and add the old password on a line. – CoreyJJohnson Mar 21 '18 at 18:09

score -1 · Answer 12 · edited Apr 14 '17 at 17:49

-1

printf "oldpassword/nnewpassword/nnewpassword" | passwd user

edited Apr 14 '17 at 17:49

Baum mit Augen

49,044
25
144
182

answered Apr 14 '17 at 17:47

Kam Paul

11

score -2 · Answer 13 · answered May 12 '17 at 18:08

#!/usr/bin/python

import random
import string
import smtplib
import sys
import os
from subprocess import call
import socket

user = sys.argv[1]
receivers = ["%s@domain.com" %user]

'''This will generate a 30 character random password'''
def genrandpwd():
        return  ''.join(random.SystemRandom().choice(string.ascii_lowercase + string.digits + string.ascii_uppercase + string.punctuation) for _ in range(30))

def change_passwd(user, password):
        p = os.popen("/usr/bin/passwd %s" %user, "w")
        p.write(password)
        p.write("\n")
        p.write(password)
    p.close()

def chage(user):
        agepasswd = call(["/usr/bin/chage", "-d", "0", "%s" %user])

def mailpwd(user, password):
        sender = "admin@%s" %socket.gethostname()
        subj = "!!!IMPORTANT!!!, Unix password changed for user %s" %user
        text = "The password for the %s user has changed, the new password is:\n\n %s \n\n Note: The system will force to change the password upon initial login. Please use the password provided in the mail as your current password and type the password of your choice as the New password" %(user, password)
        message = message = 'Subject: %s\n\n%s' % (subj, text)
        smtpObj = smtplib.SMTP('mailrelay-server.domain.com')
        smtpObj.sendmail(sender, receivers, message)
        smtpObj.quit()

def main():
        newpwd = genrandpwd()
        change_passwd(user, newpwd)
        chage(user)
        mailpwd(user, newpwd)

if __name__ == "__main__":
        main()

This script can be run in a linux machine. You can modify certain things according to your environment like mail relay server or change the limit in the password characters etc. — pythonmts, May 12 '17 at 18:11

Changing an AIX password via script?

13 Answers13

Linked