04-18-2006
sudo comand with ControlM
I'm trying to change the user Id that the script is running under. I tried the sudo comand but the job was submitted under ControlM and it seems that controlM is not allowing the user id to change. I have included the job output below. The sudo comand was suppose to set the user id to "DWSOLAP" but when I checked the uservalue it was still set to "DWSPROD". Does any one know how to get around this problem? Thanks
export JOBNAME=PQDWSL001
+ export CCDATE=20060314
+ logdte=20060314
+ print 20060314
20060314
+ appln=dws
+ proj=dwssdm
+ sudo su - dwsolap
Set ESSLANG to English_UnitedStates.Latin1@Binary
+ + whoami
uservalue=dwsprod
+ + cut -b 4-7
+ echo dwsprod
myenv=prod
+ [[ prod = olap ]]
+ [[ prod = olad ]]
+ echo Environment not set
Environment not set
+ exit 1
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Dear experts:
I am installing software on Unix via telnet using CD on my NT workstation. What kind of NFS & mount comands I should run
in the beginning ? (what exactly should be <drive for cdrom> and <mount ditectory> in the mount comand?
Thanks in advance, etc.. (6 Replies)
Discussion started by: lostam
6 Replies
2. UNIX for Dummies Questions & Answers
hi,
i have written a small script in which i use exec command and redriect output to a file..after sometime i want to switch it off and redirect the output to screen..how to do it
exec >> /tmp/out.txt 2>&1
//set of statements
then i want to switch of these exec as the rest should get... (5 Replies)
Discussion started by: mkan
5 Replies
3. Shell Programming and Scripting
Hi everyone , i am new to shell scripting and am having some problem to test if this line has been executed well and display a pass message on the screen or fail if not
sqlplus XXTEST/$2 <<END > $XXTEST_TOP/log/$0.log
@$XXTEST_TOP/admin/sql/XXTEST_SPE1_XX_QUOTE_DETAILS_TBL.sql XXTEST$2... (2 Replies)
Discussion started by: Lutchumaya
2 Replies
4. Solaris
I need to know the available space in my unix. when making a df -k it shows me the following thing:
/dev/vx/dsk/emc2/vol06
136764867 121542767 1545614 99% /emc06
would need them to explain to me well the command. since under the column avail the resulting value is... (2 Replies)
Discussion started by: roviedo
2 Replies
5. UNIX for Dummies Questions & Answers
Dear Members,
I have a file which contains ControlM characters in it.
I need a command by the means of which i should be able to identify if a file has controlM characters.
How can this be achieved.
Thanks
Sandeep (4 Replies)
Discussion started by: sandeep_1105
4 Replies
6. Solaris
Hello peolple i have to check a tape with de dd comand and redirect the exit
dd if=/dev/rmt/0cn ibs=1024k of=/dev/null
i need that the exit from that commando go to a log
if a do this dd if=/dev/rmt/0cn ibs=1024k of=/dev/null > x.log
don`t send me nothing to the log only in the screen. I need... (1 Reply)
Discussion started by: enkei17
1 Replies
7. AIX
i in smit , press F6 ,
smit fs , Change / Show Characteristics of an Enhanced Journaled File System
then F6 to see the comand , how can i see the command performed ??
x() { │
│ LIST= ... (5 Replies)
Discussion started by: prpkrk
5 Replies
8. Shell Programming and Scripting
I am writing a BASH script to update a webserver and then restart Apache. It looks basically like this:
#!/bin/bash
rsync /path/on/local/machine/ foo.com:path/on/remote/machine/
ssh foo.com sudo /etc/init.d/apache2 reloadrsync and ssh don't prompt for a password, because I have DSA encryption... (9 Replies)
Discussion started by: fluoborate
9 Replies
9. Shell Programming and Scripting
Team,
I need unix command to grep directory part from the string
for example I have a texts something like
/apps/opt/data/current/spool/test.dbf
/apps/opt/archive/../../test.dbf
I need only directory part from that string
like my out put will
/apps/opt/data/current/spool/... (1 Reply)
Discussion started by: asappidi
1 Replies
10. UNIX for Beginners Questions & Answers
HI Team,
I running below script from controlM and job is reporting as failure everyday so i tried to change the if exitstatus=1 (send only email) but not to end as a job is failed. can you let me know where i have to change this script to make the script not to fail but instead send email and... (3 Replies)
Discussion started by: Mi4304
3 Replies
LEARN ABOUT CENTOS
pam_ssh_agent_auth
pam_ssh_agent_auth(8) PAM pam_ssh_agent_auth(8)
PAM_SSH_AGENT_AUTH
This module provides authentication via ssh-agent. If an ssh-agent listening at SSH_AUTH_SOCK can successfully authenticate that it has
the secret key for a public key in the specified file, authentication is granted, otherwise authentication fails.
SUMMARY
/etc/pam.d/sudo: auth sufficient pam_ssh_agent_auth.so file=/etc/security/authorized_keys
/etc/sudoers:
Defaults env_keep += "SSH_AUTH_SOCK"
This configuration would permit anyone who has an SSH_AUTH_SOCK that manages the private key matching a public key in
/etc/security/authorized_keys to execute sudo without having to enter a password. Note that the ssh-agent listening to SSH_AUTH_SOCK can
either be local, or forwarded.
Unlike NOPASSWD, this still requires an authentication, it's just that the authentication is provided by ssh-agent, and not password entry.
ARGUMENTS
file=<path to authorized_keys>
Specify the path to the authorized_keys file(s) you would like to use for authentication. Subject to tilde and % EXPANSIONS (below)
allow_user_owned_authorized_keys_file
A flag which enables authorized_keys files to be owned by the invoking user, instead of root. This flag is enabled automatically
whenever the expansions %h or ~ are used.
debug
A flag which enables verbose logging
sudo_service_name=<service name you compiled sudo to use>
(when compiled with --enable-sudo-hack)
Specify the service name to use to identify the service "sudo". When the PAM_SERVICE identifier matches this string, and if PAM_RUSER
is not set, pam_ssh_agent_auth will attempt to identify the calling user from the environment variable SUDO_USER.
This defaults to "sudo".
EXPANSIONS
~ -- same as in shells, a user's Home directory
Automatically enables allow_user_owned_authorized_keys_file if used in the context of ~/. If used as ~user/, it would expect the file
to be owned by 'user', unless you explicitely set allow_user_owned_authorized_keys_file
%h -- User's Home directory
Automatically enables allow_user_owned_authorized_keys_file
%H -- The short-hostname
%u -- Username
%f -- FQDN
EXAMPLES
in /etc/pam.d/sudo
"auth sufficient pam_ssh_agent_auth.so file=~/.ssh/authorized_keys"
The default .ssh/authorized_keys file in a user's home-directory
"auth sufficient pam_ssh_agent_auth.so file=%h/.ssh/authorized_keys"
Same as above.
"auth sufficient pam_ssh_agent_auth.so file=~fred/.ssh/authorized_keys"
If the home-directory of user 'fred' was /home/fred, this would expand to /home/fred/.ssh/authorized_keys. In this case, we have not
specified allow_user_owned_authorized_keys_file, so this file must be owned by 'fred'.
"auth sufficient pam_ssh_agent_auth.so file=/secure/%H/%u/authorized_keys allow_user_owned_authorized_keys_file"
On a host named foobar.baz.com, and a user named fred, would expand to /secure/foobar/fred/authorized_keys. In this case, we specified
allow_user_owned_authorized_keys_file, so fred would be able to manage that authorized_keys file himself.
"auth sufficient pam_ssh_agent_auth.so file=/secure/%f/%u/authorized_keys"
On a host named foobar.baz.com, and a user named fred, would expand to /secure/foobar.baz.com/fred/authorized_keys. In this case, we
have not specified allow_user_owned_authorized_keys_file, so this file must be owned by root.
v0.8 2009-08-09 pam_ssh_agent_auth(8)