Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to add user to multiple groups
Top Forums UNIX for Dummies Questions & Answers How to add user to multiple groups Post 302443512 by citaylor on Monday 9th of August 2010 06:01:20 AM
Old 08-09-2010
To Add Anna to delhi, mumbai and pune:
Code:
usermod -G delhi,mumbai,pune anna

And to remove anna from group Delhi:
Code:
usermod -G mumbai,pune anna

The "-G" list is definitive not additive.
Thx
 

10 More Discussions You Might Find Interesting

1. Solaris

Removing user from multiple groups via command line

Want to know if any, a command line parameter(s) of removing a user from multiple groups without using any ineractive application? (1 Reply)
Discussion started by: jquizon62
1 Replies

2. Shell Programming and Scripting

User add on multiple servers

I have 85 Unix servers & I need to add single user ID on multiple servers at same time Can anyone help in this? I have written one script for single servers.same I need to user for multiple servers #!/bin/sh echo Enter user login ID read loginID echo Enter Group ID read GroupID ... (6 Replies)
Discussion started by: sandeep_pan
6 Replies

3. UNIX for Dummies Questions & Answers

dynamic user groups

Is it possible to dynamically allocate a new user group to an existing session on Solaris 5.8 I'd like to be able to allow certain users to access a set of scripts for the life of session (preferably there own session not a specific login created for the purpose) by dynamically giving the session... (0 Replies)
Discussion started by: hammer
0 Replies

4. UNIX for Dummies Questions & Answers

Adding user to groups

How do I add a user to a group? And how do I determine the list of groups to add a user? Solaris 10 newbie (1 Reply)
Discussion started by: peteythapitbull
1 Replies

5. UNIX for Dummies Questions & Answers

User groups

Hi I have a user zak and 4 groups:- oracle stats data archive I want user zak to be part of the oracle and stats group but not be able to view,list anything in data and archive. Also anyone in the data and archive group should not be able to view,list anything in oracle and stats....... (3 Replies)
Discussion started by: Zak
3 Replies

6. Solaris

Setting user groups

Hi......... I'm trying to set a group of users to login to do a required super-user tasks without knowing the super-user passwd. For example...a user popodude logs in as self with passwd..system accepts the password & then automatically asks for the super-user account passwd. My goal is... (1 Reply)
Discussion started by: Remi
1 Replies

7. AIX

user & groups

1 - what is the maximum no: of groups a user can be a part of ? 2 - what is maximum no: of users a group can contain ? (6 Replies)
Discussion started by: senmak
6 Replies

8. AIX

Nested user groups

Is there a command to nest a group in another group in AIX. (2 Replies)
Discussion started by: daveisme
2 Replies

9. UNIX for Dummies Questions & Answers

Users in multiple groups?

Happy Thanksgiving Everyone!! I have a question about adding users to multiple groups. Thanks in advance Using Red Hat and here are the issues: Example: Users: Bob Mark Groups: SystemsAnalysts BusinessAnalysts If I am adding a user Bob to both groups (SystemsAnalysts and... (2 Replies)
Discussion started by: hansokl
2 Replies

10. AIX

Can we add multiple groups to a directory or a file ?

Hello, drwxr-x--- 21 root system 4096 Jan 25 10:20 /testdir here owner is root, group is system. 1) is it possible to add multiple groups to "/testdir" files/directories ? if yes, please provide me the command. my requirement is to provide read-only access to user1 on /testdir... (6 Replies)
Discussion started by: aaron8667
6 Replies

LEARN ABOUT OPENSOLARIS

smf_security

smf_security(5) 					Standards, Environments, and Macros					   smf_security(5)

NAME

       smf_security - service management facility security behavior

DESCRIPTION

       The configuration subsystem for the service management facility, smf(5), requires privilege to modify the configuration of a service. Priv-
       ileges are granted to a user by associating the authorizations described below to the  user  through  user_attr(4)  and	prof_attr(4).  See
       rbac(5).

       The following authorization is used to manipulate services and service instances.

       solaris.smf.modify    Authorized to add, delete, or modify services, service instances, or their properties, and to read protected property
			     values.

   Property Group Authorizations
       The smf(5) configuration subsystem associates properties with each service and service instance. Related properties are grouped. Groups can
       represent  an  execution  method,  credential  information,  application data, or restarter state. The ability to create or modify property
       groups can cause smf(5) components to perform actions that can require operating system	privilege.  Accordingly,  the  framework  requires
       appropriate authorization to manipulate property groups.

       Each  property group has a type corresponding to its purpose. The core property group types are method, dependency, application, and frame-
       work. Additional property group types can be introduced, provided they conform to the extended naming convention in smf(5).  The  following
       basic authorizations, however, apply only to the core property group types:

       solaris.smf.modify.method

	   Authorized to change values or create, delete, or modify a property group of type method.

       solaris.smf.modify.dependency

	   Authorized to change values or create, delete, or modify a property group of type dependency.

       solaris.smf.modify.application

	   Authorized to change values, read protected values, and create, delete, or modify a property group of type application.

       solaris.smf.modify.framework

	   Authorized to change values or create, delete, or modify a property group of type framework.

       solaris.smf.modify

	   Authorized to add, delete, or modify services, service instances, or their properties, and to read protected property values.

       Property group-specific authorization can be specified by properties contained in the property group.

       modify_authorization    Authorizations  allow  the  addition,  deletion,  or  modification of properties within the property group, and the
			       retrieval of property values from the property group if protected.

       value_authorization     Authorizations allow changing the values of any property of the property group except modify_authorization, and the
			       retrieval of any property values except modify_authorization from the property group if protected.

       read_authorization      Authorizations  allow  the  retrieval of property values within the property group. The presence of a string-valued
			       property with this name identifies the containing property group as protected. This property has no effect on prop-
			       erty groups of types other than application. See Protected Property Groups.

       The  above authorization properties are only used if they have type astring. If an instance property group does not have one of the proper-
       ties, but the instance's service has a property group of the same name with the property, its values are used.

   Protected Property Groups
       Normally, all property values in the repository can be read by any user without explicit authorization. Property  groups  of  non-framework
       types  can  be  used to store properties with values that require protection. They must not be revealed except upon proper authorization. A
       property group's status as protected is indicated by the presence of a string-valued  read_authorization  property.  If	this  property	is
       present, the values of all properties in the property group is retrievable only as described in Property Group Authorizations.

       Administrative  domains	with  policies	that prohibit backup of data considered sensitive should exclude the SMF repository databases from
       their backups. In the face of such a policy, non-protected property values can be backed up by using the svccfg(1M) archive command to cre-
       ate an archive of the repository without protected property values.

   Service Action Authorization
       Certain	actions  on service instances can result in service interruption or deactivation. These actions require an authorization to ensure
       that any denial of service is a deliberate administrative action. Such actions include a request for execution of the  refresh  or  restart
       methods,  or  placement	of  a  service instance in the maintenance or other non-operational state. The following authorization allows such
       actions to be requested:

       solaris.smf.manage    Authorized to request restart, refresh, or other state modification of any service instance.

       In addition, the general/action_authorization property can specify additional authorizations that permit service actions  to  be  requested
       for that service instance. The solaris.smf.manage authorization is required to modify this property.

   Defined Rights Profiles
       Two rights profiles are included that offer grouped authorizations for manipulating typical smf(5) operations.

       Service Management    A	service  manager can manipulate any service in the repository in any way. It corresponds to the solaris.smf.manage
			     and solaris.smf.modify authorizations.

			     The service management profile is the minimum required to use the pkgadd(1M) or pkgrm(1M) commands to add	or  remove
			     software packages that contain an inventory of services in its service manifest.

       Service Operator      A	service  operator has the ability to enable or disable any service instance on the system, as well as request that
			     its restart or refresh method be executed. It corresponds to the solaris.smf.manage and  solaris.smf.modify.framework
			     authorizations.

			     Sites can define additional rights profiles customized to their needs.

   Remote Repository Modification
       Remote repository servers can deny modification attempts due to additional privilege checks. See NOTES.

SEE ALSO

       auths(1), profiles(1), pkgadd(1M), pkgrm(1M), svccfg(1M), prof_attr(4), user_attr(4), rbac(5), smf(5)

NOTES

       The present version of smf(5) does not support remote repositories.

SunOS 5.11							    13 Sep 2007 						   smf_security(5)
All times are GMT -4. The time now is 02:07 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy