Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: User/group management in AIX
Operating Systems AIX User/group management in AIX Post 302835547 by wilford on Monday 22nd of July 2013 03:20:00 PM
Old 07-22-2013
IBM User/group management in AIX
We have an environment of around 50 AIX LPARs. We use scripts for user and group account management but it is starting to get unwieldy to document and manage the accounts. It would be doable with scripts but before we dedicate resources to that, I was wondering if there is any product that you guys use/can recommend that can be used to remotely manage AIX user/group accounts or some sort of directory that the lpars can authenticate against. Just wondering what standard practice is out there. Thanks for any comments.
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Find all files with group read OR group write OR user write permission

I need to find all the files that have group Read or Write permission or files that have user write permission. This is what I have so far: find . -exec ls -l {} \; | awk '/-...rw..w./ {print $1 " " $3 " " $4 " " $9}' It shows me all files where group read = true, group write = true... (5 Replies)
Discussion started by: shunter63
5 Replies

2. UNIX for Dummies Questions & Answers

Aix ftp user and group

Hi, I'm new in this AIX Version 4.3 system,can anywone help? 1 - I need to create a group (ftp) and give permissions 2 - I need to create a user (ftp) 3 - I need to stop the user from go out is home directory (cd ..) (0 Replies)
Discussion started by: marques_rmc
0 Replies

3. UNIX for Dummies Questions & Answers

AIX user ID and group ID change

Hello AIX gurus, I have a requirement where I have to change user ID of user "myuser" from 100 to 200 and also the group ID of "mygroup" from 2 to 3. Please note that "myuser" has "mygroup" as it's primary group. What steps do I need to follow for this and in what order? Also can you please... (2 Replies)
Discussion started by: sacguy08
2 Replies

4. AIX

AIX San management

Hi All, I'm looking for documents and books about SAN management in AIX5.3. Any suggestions are greatly appreciated. Greetings, Peter (1 Reply)
Discussion started by: petervg
1 Replies

5. Ubuntu

Create New User with the same group nd privileges of the other user

Hi, Anyone can help me on how to duplicate privileges and group for useroradb01 to userrootdb01. I have currently using "useroradb01" and create a newly user "userrootdb01". I want both in the sames privileges and group. Please see the existing users list below; drwxr-xr-x 53 useroradb01... (0 Replies)
Discussion started by: fspalero
0 Replies

6. Red Hat

User is a Part of a Group But Group Details Do Not Show the User

Hi, In the following output you can see the the user "richard" is a member on the team/group "developers": # id richard uid=10247(richard) gid=100361(developers) groups=100361(developers),10053(testers) but in the following details of the said group (developers), the said user... (3 Replies)
Discussion started by: indiansoil
3 Replies

7. AIX

Printer Admin/Management Group

Hi Everyone, I wanted to know if there is a printer management or administration group in AIX 6.1 by default or if one needed to be created. I've searched online and I can't seem to find a solid answer. My goal is to allow two users the ability to add, delete, change printers without having... (2 Replies)
Discussion started by: syren33
2 Replies

8. AIX

AIX user administration - queue management

Dear All Please how can I create a user which would be only able to manage queue printer like creating, release, hold etc a printer queue. He would for example be able to enter commands like : - lpstat -pprintqueue where printqueue is an existing queue on the server - enable printqueue... (0 Replies)
Discussion started by: sobnc
0 Replies

9. UNIX for Advanced & Expert Users

AD Group Policy Management and Kerberos / LDAP

Has anyone attempted to define GPO / HBAC policies in Windows Server 2012 that could be respected by Kerberos/LDAP on AIX? I'm looking to associate servers to groups so that when a user part of a group tries to login to a host not associated with that group, it would be denied. This would allow... (3 Replies)
Discussion started by: Devyn
3 Replies

10. UNIX for Beginners Questions & Answers

AIX Administrator - User Profile Management

Good afternoon all, Was un-sure on where to post this so I thought I would use this topic... I was wondering what best practice people use for the deletion of user profiles on AIX systems? At the moment, I currently don't delete any user profiles, they are just disabled as they... (1 Reply)
Discussion started by: SteveCPayne
1 Replies

LEARN ABOUT DEBIAN

sync-accounts

SYNC-ACCOUNTS(8)						 chiark utilities						  SYNC-ACCOUNTS(8)

NAME

       sync-accounts - synchronise accounts and passwords

SYNOPSIS

       sync-accounts [options] [source ...]

DESCRIPTION

       sync-accounts  is  a  tool  for copying account information into the local system's password and group databases, or equivalent, from other
       systems.  It can be used to slave individual accounts, whole systems, or various partial combinations.

       By default, when invoked, sync-accounts reads is configuration file and updates all of the local details it is configured  to  synchronise,
       from all relevant sources.

       If one or more sources are named as command-line arguments, only information from those sources is installed locally.

       See sync-accounts(5) for detailed information about sync-accounts's behaviour and configuration.

OPTIONS

       -Cconfig-file
	      Reads config-file instead of /etc/sync-accounts.

       -q     Instead of updating local information, sync-accounts displays a summary of which accounts are synchronised or not, and from where.

       -n     Causes  sync-accounts  not to actually install the new information in the local password and group databases.  Instead, updated ver-
	      sions are written to the files passwd and group in the current directory.  With -n new accounts are not created at all.  The  system
	      databases are not locked.

SECURITY

       sync-accounts is not resistant to malicious data in the local password and group databases, or its configuration file or command line argu-
       ments.

       Malicious data in source information will not be able to take control of sync-accounts, but will be copied to the local databases if  sync-
       accounts is configured to do so.

       To update the local databases, sync-accounts must be run as root.  For -q and -n sync-accounts still needs to be able to successfuly invoke
       the commands specified in the configuration for getpasswd and getgroup.

EXIT STATUS

       0      All went well and there were no warnings.

       any other
	      There were problems.  The local databases may or may not have been updated.

FILES

       /etc/sync-accounts
	      Default configuration file.  (Override with -C.)

       sync-accounts-createuser
	      Default command invoked by sync-accounts to create local users.

       /home  Default location for created users' home directories.

       /bin/sh
	      Default shell for created users.

       /etc/passwd, /etc/group, /etc/shadow, /etc/master.passwd
	      Local account databases, depending on configuration.

       /etc/shadow-non-existent
	      Must not exist.

ENVIRONMENT

       EDITOR, VISUAL
	      Manipulated by sync-ccounts when it is reinvoking itself via vipw or vigr, according to lockpasswd runvia or lockgroup runvia.

       SYNC_ACCOUNTS_*
	      Used by sync-accounts for its own purposes.  Do not set these variables.

       Setting variables used by vipw(8) and vigr(8), apart from EDITOR and/orVISUAL will affect the operation of  sync-accounts.   Avoid  messing
       with these if possible.

       PATH is used to find subprograms such as sync-accounts-createuser and vipw/vigr.

BUGS

       Using sync-accounts does not give particularly prompt propagation of changed account information.

       There  is no simple mechanism for automatically getting the right configuration details for accessing the local system's password and group
       databases.

       All the systems sharing account information using sync-accounts need to be using compatible encrypted-password schemes.

AUTHOR

       sync-accounts and this manpage are part of the sync-accounts package which was written by Ian Jackson  <ian@chiark.greenend.org.uk>.   They
       are Copyright 1999-2000,2002 Ian Jackson <ian@davenant.greenend.org.uk>, and Copyright 2000-2001 nCipher Corporation Ltd.

       The  sync-accounts  package is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as
       published by the Free Software Foundation; either version 3, or (at your option) any later version.

       This is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of  MERCHANTABILITY	or
       FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for more details.

       You  should  have received a copy of the GNU General Public License along with this program; if not, consult the Free Software Foundation's
       website at www.fsf.org, or the GNU Project website at www.gnu.org.

SEE ALSO

       sync-accounts(5), grab-account(8), sync-accounts-createuser(8), passwd(5), group(5), shadow(5), master.passwd(5), vipw(8), vigr(8)

Greenend							  14th July 2002						  SYNC-ACCOUNTS(8)
All times are GMT -4. The time now is 11:31 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy