New User to Reset Passwords


 
Thread Tools Search this Thread
Operating Systems Solaris New User to Reset Passwords
# 1  
Old 05-02-2011
New User to Reset Passwords

Hi,

Apologies for my first post being a question. Long time reader, first time registered.

I'm trying to create a new user in Solaris who can reset passwords of other users. It will be held by IT, and I'm not too bothered about it having similar priveledges to root as i'm just using it so i can track a different resource team within our IT team.

I've created the new user: itpasswd

/etc/passwd

Code:
itpasswd:x:334:1:Super-User:/export/home/itpasswd:/bin/ksh
root:x:0:1:Super-User:/:/usr/bin/ksh

/etc/group

Code:
# more group
root::0:root
other::1:

When I try to change a users password with the new login, I get the permission denied error.

I know this may be something obvious. Any help would be appreciated. I thought as long as it was in the same group as root it should be ok.
# 2  
Old 05-02-2011
This is a terrible idea security-wise. You are basically giving that user the whole system, which will never pass any security audit.

What version of Solaris do you have? There are better ways to do this.
# 3  
Old 05-02-2011
Quote:
Originally Posted by MrGrim
I thought as long as it was in the same group as root it should be ok.
This is a wrong assumption.

You are creating a non privileged account (uid != 0) with a generic non privileged group (gid=other=1). The only "Super-User" attribute is the gecos but that field is nothing more than a comment. It's no surprise that user cannot change anyone's password outside its own.
# 4  
Old 05-02-2011
Quote:
Originally Posted by jim mcnamara
This is a terrible idea security-wise. You are basically giving that user the whole system, which will never pass any security audit.

What version of Solaris do you have? There are better ways to do this.
Hi Jim,

Thanks for the reply. The user only needs to reset other users passwords. It does not require any other priviledges. This is Solaris 9.
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. Red Hat

User password reset

Hello - I want to reset user password in multiple server via root ID. I have passwordless authentication for root between all the servers. I an use loop to reset the password. I am using below command in loop echo mypassword | passwd username --stdin However, if anyone sees history - he... (5 Replies)
Discussion started by: saurabh84g
5 Replies

2. UNIX for Dummies Questions & Answers

Unable to change domain user passwords

Hi, I'm new to this site, so my apologies if this is posted to the wrong board. I'm the student administrator of a small computer science lab (20 Win 7 PCs) at a university. The logins to the PCs are handled by samba (v. 3.5.8) on a CentOS server (kernel v. 2.6.9-100.ELsmp). Recently I ... (1 Reply)
Discussion started by: kerona
1 Replies

3. UNIX for Dummies Questions & Answers

Change user passwords using shell script

Hi, I want to change the password of unix users on a number of servers.My plan was to ssh to all the servers in a shell script and use the passwd command. I tried to do so but everytime i run it i get this error. ssh -x -n -l user1 host passwd Changing password for "user1" 3004-709 Error... (3 Replies)
Discussion started by: poojabhat
3 Replies

4. Shell Programming and Scripting

how to Remote Reset Password for User ?

Hello, everyone i have a little scenario and would like help , SCENARIO OS : SunOS 5.10 Shell: KSH UserName 1 connects to Server1 .He should run a little command or somthing to server2 that Resets the password of user2. i have tried this : ssh user@server2 '/usr/local/bin/sudo passwd... (0 Replies)
Discussion started by: shatztal
0 Replies

5. Shell Programming and Scripting

script to change passwords for the same user on multiple servers

I am trying to write a script to change passwords for the same user on multiple servers. My environment runs purely ssh / scp not rsh / rcp and therefore coping using rcp is not an option. I have been playing with expect to perform tasks but think there must be a better way. Has anyone got... (7 Replies)
Discussion started by: stolz
7 Replies

6. UNIX for Dummies Questions & Answers

single user mode - user accounts passwords

hello ppl, someone must be able to help with this --> I have an old NCR tower 32 with an ADDS terminal running a unix version 020102 (Im not sure if thats correct but its unix for sure). I have no user names and no passwords and need to login to read a tape. Is there any way to do that? I hear... (3 Replies)
Discussion started by: orestis
3 Replies

7. Solaris

unable to reset user password

hi, i am unable to reset one of my server user password. whenever i make a "passwd username" i get the following error ======================================== New Password: Re-enter new Password: Permission denied ======================================== please advise.thanks... (6 Replies)
Discussion started by: cromohawk
6 Replies

8. Solaris

Resetting user's passwords

Hi all, I'm developing a script to handle the various actions involved with user admin as root: Reset password create a new users change a users email address, etc We're in the process of changing over from "telnet" to "SSH" to establish terminal sessions on our Solaris 9/10 servers. ... (2 Replies)
Discussion started by: dewets
2 Replies

9. UNIX for Dummies Questions & Answers

su - user... how to find out the list of users and their passwords..

hi, to do a su - user, we need to know what are the users... so in unix 1) which file to see the list of users, passwords? (2 Replies)
Discussion started by: yls177
2 Replies
Login or Register to Ask a Question