For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Yunhyeok's avatar
Yunhyeok
Icon for Nimbostratus rankNimbostratus
Jun 17, 2025

APM local DB "passwd_expire" usage

Hello, 

 

  1. I would like to know how to use the passwd_expire value from the values ​​displayed when entering the ldbutil --list command.
  2. Can I force users to change their passwords periodically by adjusting passwd_expire based on the last_modified value?

Any Help is appreciate.

 

APM

2 Replies

  • Injeyan_Kostas's avatar
    Injeyan_Kostas
    Icon for Nacreous rankNacreous
    Jun 18, 2025

    As I see the available options are

        --uname="value"          Username
    --uid="value"            UID(a number)
    --instance="value"       Instance(e.g. /Common/vdb1)
    --password="value"       Password
    --user_groups="value"    Groups(comma separated)
    --lockout_start="value"  Lockout start (seconds since epoch)
    --locked_out="1 or 0"    1=User locked out, 0 otherwise
    --ttl="value"            Account creation time in seconds since epoch
    --duser="1 or 0"         1=Dynamically created user, 0 otherwise
    --login_failures="value" Number of login failures
    --change_passwd="1 or 0" 1=force passwd change, 0 otherwise
    --first_name="value"     First Name
    --last_name="value"      Last Name
    --email="value"          Email
    --limit="value"          Used with --list for pagination
    --file="value"           Filename for --backup, --restore and --csv
    --partition="value"      Used with --list for specific data

     

    so you could only set change_passwd to 1 periodically using a command like

    ldbutil --update --uname=XXXX --instance=/Common/XXXX --change_passwd=1

     

  • Yunhyeok's avatar
    Yunhyeok
    Icon for Nimbostratus rankNimbostratus
    Jun 26, 2025

    I can't find passwd_expire in options.

    Is there a way to use passwd_expire value?