I have an issue that I'm not sure can be resolved. I'm running a redhat based linux environment. An issue occured when I noticed that a local user account's password age was set to 30 days. It was not set this way in the past and I'm trying to figure out when and who changed this. Is there a log file that has a list of commands that have altered user accounts or something close to that? I have checked .bash_history, messages, and secure in /var/log. If anyone has any insight please let me know. Thanks.