09-14-2014
Quote:
Originally Posted by
masy
RBAC will need a considerable effort and study
...
Implementing these king of restrictions is easy with SUDO/RBAC.
Aren't you self contradicting with both of these statements?
---------- Post updated at 11:03 ---------- Previous update was at 10:40 ----------
Quote:
Originally Posted by
fretagi
There is an application installed on a server, that has a unique login account, but many users are using it with the same login name! How can we overcame this by creating individual accounts for the same application login account?
There are several ways to allow different Solaris users to run your application with the shared login account. However, there would be no simple way, if any, to sort out who did what using the application unless the application logs record a session id for each event.
In the worst case scenario, i.e. two users login in and lauching the application at the very same time, you won't be able to sort them out.
As for how to do it, RBAC and sudo have already be suggested, which one to pick will beyond other factors depend on what Solaris release you are using (10 or 11).
10 More Discussions You Might Find Interesting
1. HP-UX
Hi Mentors,
I have a unix box HPC8000 HPUX 11.11 had just a problem loging in on CDE
using ordinary account.
The problem looks like this when an ordinary account will login to it will automatically closed and the login promtp will appear.
If the root will login no problem at all.
I tried... (0 Replies)
Discussion started by: eykyn17
0 Replies
2. UNIX for Dummies Questions & Answers
Is there a way to easily change an account to be a non login account (NP in the shadow) file?
I know I can just edit the file but that is not what we want to do. We use access control software and want to provide a way to set an account to be non-login using simple commands that can be mapped... (0 Replies)
Discussion started by: LordJezo
0 Replies
3. UNIX Desktop Questions & Answers
How do you access a terminal and create a Unix user account. I am new to this form, so, is there a way to log on to a unix account that this forum offers to practice Unix. Is there a server available (somewhere) to users of this forum to access unix? So far the research I have found refers a person... (2 Replies)
Discussion started by: brendar
2 Replies
4. Post Here to Contact Site Administrators and Moderators
Moderator,
I had to create a new user acct because my old one does not work. It will not allow me to login because of permissions problems.
Can you please re-activate my old user id: gzs553
I think the email address for my old account is *****removed***** and once you reset my account,... (0 Replies)
Discussion started by: kflanigan
0 Replies
5. Linux
Hi,
How to find remote Linux box login account without login in to that box?
I don't have login account at my remote Linux box. But I need who are all having login account. How do I findout?
Thanks,
--Muthu. (3 Replies)
Discussion started by: Muthuselvan
3 Replies
6. UNIX for Dummies Questions & Answers
Hi All,
I was reading a tutorial for Installing Tomcat on Linux machine.
(http://www.puschitz.com/InstallingTomcat.html)
Here the author had mentioned that: For security reasons I created a user account with no login shell for running the Tomcat server.
My question is:
1. What is a User... (6 Replies)
Discussion started by: jw_amp
6 Replies
7. AIX
Hi there,
I am new to AIX environment, when I set up NIS Client for an AIX 5.3 Machine to connect to a Linux NIS Master, everything seems to be okie:
/etc/passwd: +::0:0:::
/etc/group: +:
ps -ef | egrep "ypbind": /usr/lib/netsvc/yp/ypbind -ypsetme -ypsetme
I can get all account... (0 Replies)
Discussion started by: quanba
0 Replies
8. AIX
I want to learn AIX. I would like to find someone who would be willing to give me a login to their AIX home lab server. My intent is to poke around and discover the similarities and differences of AIX compared to other *NIXs.
I am a UNIX admin so I can think of what some immediate concerns may... (1 Reply)
Discussion started by: perl_in_my_shel
1 Replies
9. Forum Support Area for Unregistered Users & Account Problems
my username is coolatt..thanks to do needful. (3 Replies)
Discussion started by: coolatt
3 Replies
10. UNIX for Beginners Questions & Answers
Hello... and thanks in advance for reading this or offering me any assistance
I'm trying to understand specific differences between the various login scripts... I understand the differences between interactive vs non-interactive and login vs non-login shells... and that's not where my question... (4 Replies)
Discussion started by: bodisha
4 Replies
CHSH(1) User Commands CHSH(1)
NAME
chsh - change login shell
SYNOPSIS
chsh [options] [LOGIN]
DESCRIPTION
The chsh command changes the user login shell. This determines the name of the user's initial login command. A normal user may only change
the login shell for her own account; the superuser may change the login shell for any account.
OPTIONS
The options which apply to the chsh command are:
-h, --help
Display help message and exit.
-R, --root CHROOT_DIR
Apply changes in the CHROOT_DIR directory and use the configuration files from the CHROOT_DIR directory.
-s, --shell SHELL
The name of the user's new login shell. Setting this field to blank causes the system to select the default login shell.
If the -s option is not selected, chsh operates in an interactive fashion, prompting the user with the current login shell. Enter the new
value to change the shell, or leave the line blank to use the current one. The current shell is displayed between a pair of [ ] marks.
NOTE
The only restriction placed on the login shell is that the command name must be listed in /etc/shells, unless the invoker is the superuser,
and then any value may be added. An account with a restricted login shell may not change her login shell. For this reason, placing /bin/rsh
in /etc/shells is discouraged since accidentally changing to a restricted shell would prevent the user from ever changing her login shell
back to its original value.
FILES
/etc/passwd
User account information.
/etc/shells
List of valid login shells.
/etc/login.defs
Shadow password suite configuration.
SEE ALSO
chfn(1), login.defs(5), passwd(5).
shadow-utils 4.5 01/25/2018 CHSH(1)