Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Disable users to direct login
Operating Systems Solaris Disable users to direct login Post 302715777 by Evan on Monday 15th of October 2012 11:28:34 AM
Old 10-15-2012
Hi all,
thanks for your contribute.

Reading blogs, forum and techdoc came out that there's no way to deny a specific user (except root) to login directly with telnet.

I was able to make some tests in the lab and I think that the right solution is the one provided in my first post.

Moreover I'm going to discuss with colleagues to stop the telnet service so that we should solve the problem of direct access with specific user "X".

Thanks again.

Kind regards,
Evan
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Disable Root Console login

After Configuring a brand new netraT1, It appears, the only way you can log in as root is throught the Serial Port (console). I believe there is a file in /etc which can be edited to allow root to access login via other methods eg: telnet, ssh, etc. My Question: Which file contains... (2 Replies)
Discussion started by: SmartJuniorUnix
2 Replies

2. AIX

How to disable user login infor?

If user login and don't do anything in 15 mins, the user is kicked off from the server. how to disable it? (5 Replies)
Discussion started by: rainbow_bean
5 Replies

3. Linux

ssh - disable direct root login

Hi Guys.... I am a newbie to unix. I have a requirement. I have a server. I have to configure ssh to disable direct root login and then add a user with sudo access to this server.Then change the ssh port to 22315 and the server should permit the ssh only from my local machine ip.I also have to... (1 Reply)
Discussion started by: mahesh_raghu
1 Replies

4. Solaris

Disable local user from remote login

Is there a way to disable a certain local user from remote login, and only allow su to that user. :confused: i know i can stop remote login for root user, i need it for other users. Appreciate your help (4 Replies)
Discussion started by: mduweik
4 Replies

5. UNIX for Dummies Questions & Answers

How to disable root login (Not over SSH)?

I have already disabled root login over the ssh by modifying /etc/ssh/sshd_config. But how would i disable root login on a server itself. We have implemented LDAP in our environment and our security guide states that root login must be obtained by first logging into the host using his/her own... (2 Replies)
Discussion started by: pinga123
2 Replies

6. Solaris

Direct login without password

Hi, I am trying to setup direct login from server test1 (Solaris 10) to server test2 (Solaris 9) using id taops (ldap id). Process Followed on Test 2. created .rhosts file in home directory of user taops geneted public key on test1 and appended to authorized keys on test2. Now trying... (8 Replies)
Discussion started by: tuxian
8 Replies

7. AIX

AIX Disable direct root login problems

I have disabled rlogin for root successfully , but after that i could not login to root from console and could not su to root from other users as it responded as expired account I did not have any admin user but I have managed to recover the situation by accessing rootvg before mounting it, but... (5 Replies)
Discussion started by: majd_ece
5 Replies

8. Solaris

Temporary disable of users

HI Gurus can I temporary disable users to connect to Solaris, need help Regards (3 Replies)
Discussion started by: smazshah
3 Replies

9. Shell Programming and Scripting

Manipulating sed Direct Input to Direct Output

Hi guys, been scratching round the forums and my mountain of resources. Maybe I havn't read deep enough My question is not how sed edits a stream and outputs it to a file, rather something like this below: I have a .txt with some text in it :rolleyes: abc:123:xyz 123:abc:987... (7 Replies)
Discussion started by: the0nion
7 Replies

10. Red Hat

How to disable sudo -i in sudoers file for users?

All, I need to disable "sudo -i" and "su - " for all servers in our environment, We want to make sure no one run commands or delete files across environment using switching to root account. can you guys please lets me know if this is achievable. Thanks and Regards shekar (2 Replies)
Discussion started by: shekar777
2 Replies

LEARN ABOUT OPENSOLARIS

cconsole

cconsole(1M)						  System Administration Commands					      cconsole(1M)

NAME

       cconsole , crlogin, cssh, ctelnet - multi window, multi machine, remote console, login, ssh, and telnet commands

SYNOPSIS

       $CLUSTER_HOME/bin/cconsole [-s] [ -l  username] [clustername... | nodename...]

       $CLUSTER_HOME/bin/crlogin [-l username] [clustername...
       | nodename...]

       $CLUSTER_HOME/bin/cssh [-l username] [-p ssh-port] [clustername...
       | nodename...]

       $CLUSTER_HOME/bin/ctelnet [clustername... | nodename...]

DESCRIPTION

       These  utilities  initiate  a  multiple window connection to a set of specified hosts. There are three variations: one that is specifically
       intended for remote console access while the others provide remote logins using rlogin, ssh, or telnet.

       Each utility starts a host window for each of the specified hosts, as well as a common window. Input directed into  the	common	window	is
       sent to each of these host windows.

       This  tool  is  useful  for system administration tasks that require similar things to be done on each of several hosts. For tasks that are
       identical on all hosts, typing in the common window sends the characters to all of the hosts. However, the host windows are normal terminal
       windows	so they can also be used one at a time (by moving the mouse into one of them and typing directly into it) to perform host specific
       tasks.

       The common window also allows the user to select which hosts receive the characters typed in the common window, so only the specified hosts
       will receive input.

       These utilities use entries in two different databases, /etc/clusters and /etc/serialports.

   cconsole
       The  cconsole  command  provides remote console access through the telnet command. All normal telnet escape characters are available to the
       user. See the telnet(1) man page for a complete listing of telnet escape characters. Because there are a few telnet escapes that  are  com-
       monly used, they are provided here as well. The escape character is Control-], specified below as ^].

       ^] quit		   Quit the session. Analogous to ~. in tip and rlogin.

       ^] send brk	   Send  a break signal to the remote system. This is what is needed to halt the Sun CPU. The normal key board sequence is
			   "L1-A."

   crlogin
       The crlogin utility provides remote login through the rlogin command to multiple cluster nodes.

   cssh
       The cssh utility establishes Secure Shell connections directly to the cluster nodes through the ssh command.

   ctelnet
       The ctelnet utility is similar to cconsole except that the connection is directly over the Internet.

OPTIONS

       The following options are supported:

       -l username    Specifies the user name for the ssh connection. This option is passed to the cconsole, crlogin, or  cssh	utility  when  the
		      utility is launched from the CCP. The ctelnet utility ignores this option.

		      If the -l option is not specified, the user name that launched the CCP is effective.

       -p ssh-port    Specifies  the  Secure Shell port number to use. This option is passed to the cssh utility when the utility is launched from
		      the CCP. The cconsole, crlogin, and ctelnet utilities ignore this option,

		      If the -p option is not specified, the default port number 22 is used for secure connections.

       -s	      Specifies using Secure Shell connections to node consoles instead of telnet  connections.  This  option  is  passed  to  the
		      cconsole utility when the utility is launched from the CCP. The crlogin, cssh, and ctelnet utilities ignore this option.

		      If the -s option is not specified, the cconsole utility uses telnet connections to the consoles.

		      To override the -s option, deselect the Use SSH checkbox in the Options menu of the cconsole graphical user interface (GUI).

ENVIRONMENT VARIABLES

       The following environment variables affect the execution of these utilities:

       CLUSTER_HOME	   Location of Sun Cluster System tools. Defaults to /opt/SUNWcluster.

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWccon			   |
       +-----------------------------+-----------------------------+
       |Interface Stability	     |Evolving			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       rlogin(1), ssh(1), telnet(1), tip(1), ccp(1M), chosts(1M), cports(1M), clusters(4), serialports(4), attributes(5)

NOTES

       The standard set of X Window System command line arguments are accepted.

Sun Cluster 3.2 						    8 Sep 2007							      cconsole(1M)
All times are GMT -4. The time now is 11:17 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy