I'm trying to get cracklib to force caps, special char, etc. These arguments to pam_cracklib.so are directly from the pam sysadmin guide.
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
auth        required      /lib/security/pam_env.so
auth        sufficient    /lib/security/pam_unix.so likeauth nullok
auth        required      /lib/security/pam_deny.so

account     required      /lib/security/pam_unix.so

password    required      /lib/security/pam_cracklib.so \
retry=3 dcredit=-1 ucredit=-1 ocredit=-1 lcredit=0 minlen=8
password    sufficient    /lib/security/pam_unix.so nullok use_authtok md5 shadow
password    required      /lib/security/pam_deny.so

session     required      /lib/security/pam_limits.so
session     required      /lib/security/pam_unix.so
It seems to force at least 8 char, and it will change retry if I edit, but it will not force upper, number and special char. It seems to ignore those altogether.

It's RH2.1 AS and I'm not using authconfig, and dont plan to. Any advice?