How to Change User Password in Linux CLI

Changing a user password in Linux using the command line interface (CLI) is a common task for system administrators and users alike. Whether you need to update your own password or reset another user's password, the Linux CLI provides straightforward commands to get this done quickly and securely. In this article, I’ll guide you through the process step-by-step, making it easy for you to manage passwords on your Linux system.

You don’t need to be a Linux expert to follow along. I’ll explain everything in simple terms and show you how to use the right commands safely. By the end, you’ll know how to change passwords for yourself or other users, understand important options, and avoid common mistakes. Let’s dive into the world of Linux password management through the CLI.

Understanding Password Management in Linux CLI

Linux uses a secure system to store and manage user passwords. These passwords are encrypted and saved in special files that only the system can access. When you change a password, the system updates these files to keep your account secure.

The main command for changing passwords in Linux is passwd. This command works for both your own user account and other users if you have the right permissions. Here’s what you need to know about it:

• passwd command: Used to change user passwords.
• Root privileges: Required to change passwords for other users.
• Password encryption: Linux uses hashing algorithms like SHA-512 to store passwords securely.
• Password policies: Some systems enforce rules like minimum length or complexity.

Using the CLI for password changes is faster and more flexible than graphical tools, especially when managing remote servers or multiple accounts.

How to Change Your Own Password in Linux CLI

Changing your own password is simple and safe. Just follow these steps:

1. Open your terminal.
2. Type the command:

   passwd
   

3. You will be prompted to enter your current password.
4. Then, enter your new password twice to confirm.

The system will check if your new password meets security requirements. If it does, your password will be updated immediately.

Tips for Choosing a Strong Password

• Use at least 8 characters.
• Include uppercase and lowercase letters.
• Add numbers and special symbols.
• Avoid common words or easily guessable information.

This helps protect your account from unauthorized access.

Changing Another User’s Password as Root

If you are a system administrator or have root access, you can change passwords for other users. This is useful when users forget their passwords or when setting up new accounts.

Here’s how to do it:

1. Open the terminal.
2. Switch to root user or use sudo:

   sudo passwd username
   

3. You will be prompted to enter a new password for the user.
4. Confirm the new password by typing it again.

The user’s password will be updated without needing their current password.

Important Notes for Admins

• Always verify the username before changing passwords.
• Use strong passwords to maintain system security.
• Inform users about password changes securely.

Using Additional Options with the passwd Command

The passwd command has useful options to manage passwords more effectively. Here are some common ones:

• -l : Lock a user’s password, disabling login.
• -u : Unlock a user’s password.
• -e : Expire a password immediately, forcing the user to change it on next login.
• -d : Delete a user’s password, allowing login without a password (not recommended).

Example: To lock a user account:

sudo passwd -l username

These options help you control user access and enforce security policies.

Resetting a Forgotten Password in Single-User Mode

Sometimes, you may need to reset a password if it’s forgotten and you cannot log in normally. Linux systems allow you to boot into single-user mode or recovery mode to fix this.

Steps to reset a password in single-user mode:

1. Reboot your system.
2. At the boot loader (GRUB), select the Linux entry and press e to edit.
3. Find the line starting with linux and add single or init=/bin/bash at the end.
4. Press Ctrl + X or F10 to boot.
5. You will get a root shell without a password prompt.
6. Use the passwd command to change the user’s password:

   passwd username
   

7. Enter the new password twice.
8. Reboot the system normally.

This method requires physical access to the machine and is a powerful way to regain control if passwords are lost.

Best Practices for Managing Passwords in Linux CLI

Managing passwords securely is crucial for system safety. Here are some best practices you should follow:

• Use strong, unique passwords for every user.
• Regularly update passwords to reduce risk.
• Limit root access and use sudo for administrative tasks.
• Lock inactive accounts to prevent unauthorized access.
• Enforce password policies using tools like pam_pwquality.
• Monitor password changes through system logs.

Following these tips helps keep your Linux system secure and reliable.

Troubleshooting Common Issues When Changing Passwords

Sometimes, you might face problems while changing passwords. Here are common issues and how to fix them:

• Password too short or weak: The system enforces minimum complexity. Choose a stronger password.
• Permission denied: You need root or sudo privileges to change other users’ passwords.
• Account locked: Unlock the account using passwd -u username.
• Password expired: Use passwd -e username to force a password change on next login.

If you encounter errors, check system logs or consult your Linux distribution’s documentation for specific guidance.

Automating Password Changes with Scripts

For administrators managing many users, manually changing passwords can be tedious. You can automate this process using shell scripts.

Example script to change passwords for multiple users:

#!/bin/bash
while IFS=: read -r user pass; do
  echo "$user:$pass" | sudo chpasswd
done < user_passwords.txt

In this example, user_passwords.txt contains usernames and new passwords separated by a colon. This method speeds up bulk password updates but requires careful handling to avoid security risks.

Summary Table: Common passwd Commands

This table helps you quickly reference useful commands.

Conclusion

Changing user passwords in Linux via the command line is a straightforward and essential skill. Whether you’re updating your own password or managing multiple users, the passwd command offers a reliable way to keep accounts secure. Remember to use strong passwords and follow best practices to protect your system.

If you ever forget a password, single-user mode provides a way to reset it safely. For administrators, automating password changes can save time but should be done carefully. With these tips and commands, you’re well-equipped to handle password management confidently in any Linux environment.

FAQs

How do I change my Linux password using the CLI?

Simply open the terminal and type passwd. Enter your current password, then your new password twice. The system will update your password if it meets security requirements.

Can I change another user’s password without their current password?

Yes, if you have root or sudo privileges, use sudo passwd username to set a new password without needing the old one.

What should I do if I forget my Linux password?

Reboot into single-user or recovery mode, access the root shell, and use passwd username to reset the password. This requires physical access to the machine.

How can I lock a user account in Linux?

Use the command sudo passwd -l username to lock the user’s password and prevent login.

Are there password complexity rules in Linux?

Yes, many Linux systems enforce password policies like minimum length and character types. These can be configured using PAM modules such as pam_pwquality.