Hi all,
Has anyone ever been burned by editing /etc/default/security with vi? or should this only be edited inside of SAM or some such tool?

I want to turn on /etc/nologin as a tool to lock out all users but keep my system in multi mode for DB maintenance. TIA -KJ

PS I have been burned editing some AIX txt files that should only be modified by smitty…

/etc/default/security should ONLY be edited with vi or by SAM...

AIX has plenty of stanza regulated and data type filesthat are very triky... but try to some true data files in HP-UX with vi the results would be the same...
There is one ascii file you have to be carefull: /etc/syslog.conf

I found my answer...
I am not sure if this is bad "form" to cross post to a second forum, but HP has it posted:
Preventing Users from Logging In
"Preventing Users from Logging In"

You can also use the ch_rc command to modify the NOLOGIN variable (see ch_rc(1M)).
http://docs.hp.com/img/s.gif#
/usr/sbin/ch_rc -a -p NOLOGIN=1 /etc/default/security
#
/usr/sbin/ch_rc -a -p NOLOGIN=0 /etc/default/security

Sorry if this is not cool in the groups eyes... -KJ

Well in fact you had 2 questions.. you had the answer to the one in title, maybe we all believed you knew what you wanted to add/modify but was unsure if to be done with vi or a special tool as often the case in AIX...
We like to see the source if not personal doc ( being honest is most important ), and so there is no bad "form" as long as the link you provide can be seen by all ( public - no need of account/passwd) but the proper way...

Thanks for your contribution

All the best