Documentation for Open Vulnerability and Assessment Language (OVAL®)
Definition Type: Element
Name: exp_inact
Namespace: http://oval.mitre.org/XMLSchema/oval-definitions-5#unix
Type: oval-def:EntityStateStringType
Containing Schema: unix-definitions-schema.xsd
MinOccurs 0
MaxOccurs 1
Abstract
Documentation:
The exp_inact entity describes how many days of account inactivity the system will wait after a password expires before locking the account. Unix systems are generally configured to only allow a given password to last for a fixed period of time. When this time, the chg_req parameter, is near running out, the system begins warning the user at each login. How soon before the expiration the user receives these warnings is specified in exp_warn. The only hiccup in this design is that a user may not login in time to ever receive a warning before account expiration. The exp_inact parameter gives the sysadmin flexibility so that a user who reaches the end of their expiration time gains exp_inact more days to login and change their password manually.
Collapse XSD Schema Diagram:
Drilldown into var_ref in schema oval-definitions-schema_xsd Drilldown into mask in schema oval-definitions-schema_xsd Drilldown into operation in schema oval-definitions-schema_xsd Drilldown into datatype in schema oval-definitions-schema_xsd Drilldown into var_check in schema oval-definitions-schema_xsd Drilldown into entity_check in schema oval-definitions-schema_xsd Drilldown into EntityStateStringType in schema oval-definitions-schema_xsdXSD Diagram of exp_inact in schema unix-definitions-schema_xsd (Open Vulnerability and Assessment Language (OVAL®))
Collapse XSD Schema Code: 
<xsd:element name="exp_inact" type="oval-def:EntityStateStringType" minOccurs="0" maxOccurs="1">
    <xsd:annotation>
        <xsd:documentation>The exp_inact entity describes how many days of account inactivity the system will wait after a password expires before locking the account. Unix systems are generally configured to only allow a given password to last for a fixed period of time. When this time, the chg_req parameter, is near running out, the system begins warning the user at each login. How soon before the expiration the user receives these warnings is specified in exp_warn. The only hiccup in this design is that a user may not login in time to ever receive a warning before account expiration. The exp_inact parameter gives the sysadmin flexibility so that a user who reaches the end of their expiration time gains exp_inact more days to login and change their password manually.</xsd:documentation>
        <xsd:appinfo>
            <sch:pattern id="shadowsteexp_inact" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                <sch:rule context="unix-def:shadow_state/unix-def:exp_inact">
                    <sch:assert test="not(@datatype) or @datatype='string'">
                        <sch:value-of select="../@id" /> - datatype attribute for the exp_inact entity of a shadow_state should be 'string'</sch:assert>
                </sch:rule>
            </sch:pattern>
        </xsd:appinfo>
    </xsd:annotation>
</xsd:element>
Collapse Child Attributes:
Name Type Default Value Use
datatype oval-def:datatype string Optional
operation oval-def:operation equals Optional
mask oval-def:mask false Optional
var_ref oval-def:var_ref Optional
entity_check oval-def:entity_check all Optional
var_check oval-def:var_check all Optional
Collapse Derivation Tree:
Documentation for Open Vulnerability and Assessment Language (OVAL®)

Generated using Liquid Studio - Developer Bundle 21.0.0.0