Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Security user Can't change the groups.
Operating Systems AIX Security user Can't change the groups. Post 302315824 by jyoung on Wednesday 13th of May 2009 09:51:25 AM
Old 05-13-2009
I am not an expert at this so I am probably not the right person to help. Having said that I had to set up a user with the same rights as root. One of the things I had to do was set their User Id to 0 (zero) along with the groups that they can have access to. The problem I believe is that it will give them the same rights as root which may not be what you want. Good luck.
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

dynamic user groups

Is it possible to dynamically allocate a new user group to an existing session on Solaris 5.8 I'd like to be able to allow certain users to access a set of scripts for the life of session (preferably there own session not a specific login created for the purpose) by dynamically giving the session... (0 Replies)
Discussion started by: hammer
0 Replies

2. UNIX for Dummies Questions & Answers

Adding user to groups

How do I add a user to a group? And how do I determine the list of groups to add a user? Solaris 10 newbie (1 Reply)
Discussion started by: peteythapitbull
1 Replies

3. UNIX for Dummies Questions & Answers

User groups

Hi I have a user zak and 4 groups:- oracle stats data archive I want user zak to be part of the oracle and stats group but not be able to view,list anything in data and archive. Also anyone in the data and archive group should not be able to view,list anything in oracle and stats....... (3 Replies)
Discussion started by: Zak
3 Replies

4. UNIX for Advanced & Expert Users

How to remove UNIX user and groups

I created UNIX groups - oinstall, dba and UNIX user - oracle for the installation of Oracle 10g. But I might did something incorrectly. Oracle user account didn't created properly. How to remove these UNIX groups and user so that I can start over again to create them properly. Thanks. (7 Replies)
Discussion started by: duke0001
7 Replies

5. Solaris

Setting user groups

Hi......... I'm trying to set a group of users to login to do a required super-user tasks without knowing the super-user passwd. For example...a user popodude logs in as self with passwd..system accepts the password & then automatically asks for the super-user account passwd. My goal is... (1 Reply)
Discussion started by: Remi
1 Replies

6. AIX

user & groups

1 - what is the maximum no: of groups a user can be a part of ? 2 - what is maximum no: of users a group can contain ? (6 Replies)
Discussion started by: senmak
6 Replies

7. UNIX for Dummies Questions & Answers

How to add user to multiple groups

hi all i am new to solaris how to add a user to multiple(secondary) groups. user :anna Groups : delhi ,mumbai,pune i need like this in cat /etc/group delhi::anna mumbai::anna pune::anna i tried using usermod -a -G hyd anna that does int work how to delete user from group... (3 Replies)
Discussion started by: kalyankalyan
3 Replies

8. AIX

Nested user groups

Is there a command to nest a group in another group in AIX. (2 Replies)
Discussion started by: daveisme
2 Replies

9. UNIX for Advanced & Expert Users

How to get User list from different groups and root?

Hi all, I want to list out users from different group and root, who are roaming in our group or root as a user. how can i list out this users ? (1 Reply)
Discussion started by: kpatel97
1 Replies

10. HP-UX

Creating user groups that are persistent

Hi, I need to modify the user 'munfai' by adding it into groups bscs, oinstall, dba. I use this command as user root to add the user into the mentioned groups : # usermod -G bscs,oinstall,dba munfai I can thereafter see the id in the groups : # id munfai uid=258(munfai) gid=20(users)... (2 Replies)
Discussion started by: anaigini45
2 Replies

LEARN ABOUT HPUX

getaccess

getaccess(1)						      General Commands Manual						      getaccess(1)

NAME

       getaccess - list access rights to file(s)

SYNOPSIS

       user] user] group[,group]...] file ...

       file ...

DESCRIPTION

       lists for the specified files the effective access rights of the caller (that is, for their effective user ID, effective group ID, and sup-
       plementary groups list).  By default, the command prints a symbolic representation of the user's access rights to the named  file:  or  for
       read/no read, or for write/no write, and or for execute/no execute (for directories, search/no search), followed by the file name.

   Options
       recognizes the following options and command-line arguments:

	      List access for the given user instead of the caller.
			     A	user  can  be  a known user name, a valid ID number, or @, representing the file's owner ID.  If information about
			     more than one file is requested, the value of @ can differ for each.

			     This option sets the user ID only.  The access check is made with the caller's effective group ID	and  supplementary
			     group IDs unless is also specified.

	      List access for the given group(s) instead of the caller's effective group
			     ID  and  supplementary  groups  list.   A	group can be a known group name, a valid ID number, or @, representing the
			     file's group ID.  If information about more than one file is requested, the value of @ can differ for each.

	      List access using the caller's real user
			     ID, group ID, and supplementary groups list, instead of effective ID values.

	      List access rights numerically
			     (octal digits instead of for each file requested.	The bit values and are defined in the file

       Checking access using access control lists is described in acl(5) and aclv(5).

       In addition, the write bit is cleared for files on read-only file systems or shared-text programs being executed.  The execute bit  is  not
       turned  off  for shared-text programs open for writing because it is not possible to ascertain whether a file open for writing is a shared-
       text program.

       Processes with appropriate privileges have read and write access to all files.  However, write access is denied for files on read-only file
       systems or shared-text programs being executed.	Execute access is allowed if and only if the file is not a regular file or the execute bit
       is set in any of the file's ACL entries.

       To use successfully, the caller must have search access in every directory component of the path name of the file.  verifies search  access
       first  by  using  the  caller's effective IDs, regardless of the user and group IDs specified.  This is distinct from the case in which the
       caller can search the path but the user for whom access is being checked does not have access to the file.

       Note: a file name argument of has no special meaning (such as standard input) to

EXTERNAL INFLUENCES

   Environment Variables
       determines the language in which messages are displayed.

       If is not specified or is set to the empty string, a default of "C" (see lang(5)) is used instead of If any  internationalization  variable
       contains an invalid setting, behaves as if all internationalization variables are set to "C".  See environ(5).

RETURN VALUE

       returns one of the following values:

	      0    Successful completion.

	      1    was invoked incorrectly or encountered an unknown user or group name.  An appropriate message is printed to standard error.

	      2    A file is nonexistent or unreachable (by the caller).  prints an appropriate message to standard error, continues, then returns
		   a value of 2 upon completion.

EXAMPLES

       The following command prints the caller's access rights to file1 using the file's group ID instead of the caller's effective group  ID  and
       groups list.

       Here's how to check access by user in groups and to all files in the current directory, with access rights expressed as octal values.

       Here's how to list access rights for all files under

AUTHOR

       was developed by HP.

FILES

SEE ALSO

       chacl(1), getacl(1), lsacl(1), setacl(1), getaccess(2), glossary(9).

																      getaccess(1)
All times are GMT -4. The time now is 04:42 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy