I'm trying to get cracklib to force caps, special char, etc. These arguments to pam_cracklib.so are directly from the pam sysadmin guide.
Code:
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
auth        required      /lib/security/pam_env.so
auth        sufficient    /lib/security/pam_unix.so likeauth nullok
auth        required      /lib/security/pam_deny.so

account     required      /lib/security/pam_unix.so

password    required      /lib/security/pam_cracklib.so \
retry=3 dcredit=-1 ucredit=-1 ocredit=-1 lcredit=0 minlen=8
password    sufficient    /lib/security/pam_unix.so nullok use_authtok md5 shadow
password    required      /lib/security/pam_deny.so

session     required      /lib/security/pam_limits.so
session     required      /lib/security/pam_unix.so
It seems to force at least 8 char, and it will change retry if I edit, but it will not force upper, number and special char. It seems to ignore those altogether.

It's RH2.1 AS and I'm not using authconfig, and dont plan to. Any advice?

Thx