03-22-2013
Curiosity killed the cat - so I am asking what did you change, what did you set back.
If you want to use RBAC and pconsole you might be able to setup some RBAC for a user.
In any case, you need to let pconsole (if you were planning on using that) create the role for a user (normally pcon_username) for roles needed while using pconsole (or pcons_username - I forget).
The SYSTEM parameter in /etc/security/user should make sure that LDAP is used for login, so username/password is stored in LDAP - while having an additional definition of the USER (will need to run mkuser -R files id=NNN pgid=GGG) to create the user in the local registery.
lsuser username will tell you how AIX sees the user after login.
lsuser -R files username (AIX view local files only)
lsuser -R LDAP username (AIX view using LDAP information only - I think. If it is giving information that is not in AD then it is still going to the files are to fill in blanks (in particular the default: stanzas in /etc/security/*).
10 More Discussions You Might Find Interesting
1. Programming
I want to spawn n child processes but have two different classes..with the foremost one forking/spawning the child process and the latter performing a function w/ the spawned processes.
I can do this in one class with an if statement and the simple
if((pid=fork())==0) //child process
{
... (1 Reply)
Discussion started by: StrengthThaDon
1 Replies
2. Shell Programming and Scripting
Hi,
I need to spawn mutilpe threads , each invoking a different set of shell scripts, in parallel.
What would be the best way to do that.
Any sample script would greatly help. I am a novice at Unix so any help is much appreciated.
Thanks (5 Replies)
Discussion started by: neeto
5 Replies
3. UNIX for Advanced & Expert Users
Hi - I need help. My user crontab is spawning multiple at processes (and multiple mencoder program starts, that exit, then restart, repeatedly), locking up my system.
For example I have this entry in my crontab:
$ sudo crontab -u victoria -e
* * * * * ~/recordings/pvr1
* * * * *... (10 Replies)
Discussion started by: gstuart
10 Replies
4. Shell Programming and Scripting
Hello
I've got a script that creates multiple processes, in ksh, to bcp out 6 tables at a time. In the script, we write messages to the log to show our progress; most of the time, the log messages are nice and neat with one per line, like they should be. But every once in awhile, at random, the... (2 Replies)
Discussion started by: stonemonolith
2 Replies
5. UNIX for Advanced & Expert Users
Hi All,
I need some assistance, if possible...
Our IMAP server has recently (as of 10:30 GMT today) started spawning multiple processes for no reason! This is causing the mail server's load average to increase continually until the whole machine grinds to a halt.
Here is a typical... (0 Replies)
Discussion started by: fishsponge
0 Replies
6. AIX
AIX6.1
in topas 'pconsole" processing utilization showing high (48.1 %) in pgsp column
what is pconsole process, can kill it
Thanks in Advance (0 Replies)
Discussion started by: sunnybee
0 Replies
7. Shell Programming and Scripting
Want to kill multiple processes by name. for the example below, I want to kill all 'proxy-stagerd_copy' processes.
I tried this but didn't work:
>> ps -ef|grep proxy_copy
root 991 986 0 14:45:34 ? 0:04 proxy-stagerd
root 1003 991 0 14:45:49 ? 0:01... (2 Replies)
Discussion started by: catalinawinemxr
2 Replies
8. Shell Programming and Scripting
:)Hi there, I am new to scripting and wanted to see if someone can show me how to grep on multiple processes and send the output to a file in /home/mydir/output.
I am aware of
ps -ef | grep on 1 process
but need help looking up multiple processes, can you use this command
ps -elf | grep |pid1... (4 Replies)
Discussion started by: abbya
4 Replies
9. Shell Programming and Scripting
Hi,
I am having a shell script which has a while loop as shown below.
while
do
sleep 60
done
I am executing this script from Informatica ETL tool command task from where we can execute UNIX commands/scripts. When i do that, i am seeing 2 processes getting started for one script... (2 Replies)
Discussion started by: chekusi
2 Replies
10. Solaris
Hi,
I am having a shell script on Solaris 10 which has a while loop as shown below.
#!/usr/bin/ksh
#
while
do
sleep 60
done
Name of the shell script is coldcentric.sh. I executed script /DATAWAREHOUSE/LOAD/Scripts/coldcentric.sh from a command task in Informatica worklow as... (3 Replies)
Discussion started by: chekusi
3 Replies
newkey(1M) System Administration Commands newkey(1M)
NAME
newkey - create a new Diffie-Hellman key pair in the publickey database
SYNOPSIS
newkey -h hostname [-s nisplus | nis | files | ldap]
newkey -u username [-s nisplus | nis | files | ldap]
DESCRIPTION
newkey establishes new public keys for users and machines on the network. These keys are needed when using secure RPC or secure NFS ser-
vice.
newkey prompts for a password for the given username or hostname and then creates a new public/secret Diffie-Hellman 192 bit key pair for
the user or host. The secret key is encrypted with the given password. The key pair can be stored in the /etc/publickey file, the NIS pub-
lickey map, or the NIS+ cred.org_dir table.
newkey consults the publickey entry in the name service switch configuration file (see nsswitch.conf(4)) to determine which naming service
is used to store the secure RPC keys. If the publickey entry specifies a unique name service, newkey will add the key in the specified name
service. However, if there are multiple name services listed, newkey cannot decide which source to update and will display an error mes-
sage. The user is required to specify the source explicitly with the -s option.
In the case of NIS, newkey should be run by the superuser on the master NIS server for that domain. In the case of NIS+, newkey should be
run by the superuser on a machine which has permission to update the cred.org_dir table of the new user/host domain.
In the case of NIS+, nisaddcred(1M) should be used to add new keys. newkey cannot be used to create keys other than 192-bit Diffie-Hellman.
In the case of LDAP, newkey should be run by the superuser on a machine that also recognizes the directory manager's bind distinguished
name (DN) and password to perform an LDAP update for the host.
OPTIONS
-h hostname Create a new public/secret key pair for the privileged user at the given hostname. Prompts for a password for the given
hostname.
-u username Create a new public/secret key pair for the given username. Prompts for a password for the given username.
-s nisplus Update the database in the specified source: nisplus (for NIS+), nis (for NIS), files, or ldap (LDAP). Other sources may be
-s nis available in the future.
-s files
-s ldap
ATTRIBUTES
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Availability |SUNWcsu |
+-----------------------------+-----------------------------+
SEE ALSO
chkey(1), keylogin(1), nisaddcred(1M), nisclient(1M), nsswitch.conf(4), publickey(4), attributes(5)
NOTES
NIS+ might not be supported in future releases of the SolarisTM Operating Environment. Tools to aid the migration from NIS+ to LDAP are
available in the Solaris 9 operating environment. For more information, visit http://www.sun.com/directory/nisplus/transition.html.
SunOS 5.10 13 Nov 2003 newkey(1M)