04-29-2015
Thanks for your replies blackrageous & agent.kgb
I would like to store AIX specific attributes (home directory, shell etc) in AIX only.
But the users should be able to authenticate using their MSAD password.
they should be able to reset the password on their own. (just like for their work stations)
I just want to avoid USER administration (like creating/resetting users etc) from AIX side. But i(AIX admin) should be able to control access. (not all AD users can login)
Do we need to create AD group (and attach USERs, that need access) and integrate with AIX ?
please let me know how this works, and which approach is better for my scenario.
Thanks much for your time.
8 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Hi there
I am a newbie. want to learn followings:
1. How can i create an mail only account.?
2. Where is the file containing mail accounts?What is the path?
3. Can i create mail accounts from PHP?
Thanx (3 Replies)
Discussion started by: vbs
3 Replies
2. UNIX for Advanced & Expert Users
Hello all:
I am new to UNIX and I am given the responsibility of administering a UNIX machine recently. The system is a IBM AIX 3.1. As a part of my duties I recently created some user accounts
using "smit". It looked as if everything went well. But, after creating the account, I logged into... (3 Replies)
Discussion started by: pdepa
3 Replies
3. Shell Programming and Scripting
I have found a script to create user accounts. But there are a few lines i dont understand. Can someone help me with this? Here's the code:
######################################
while ;
do
ACCT=${USER_ACCT}${START}
START=`expr $START + 1`
START=`echo ${START} | awk... (3 Replies)
Discussion started by: Sensor
3 Replies
4. HP-UX
Hello all,
I am trying to list all accounts that are still activated on a HP-UX trusted system. I have tried to do something with the modprpw command but can't think of any way. Can someone give me a hint? I am not looking for a whole script, this I can do it, but just a way to get that into a... (1 Reply)
Discussion started by: qfwfq
1 Replies
5. Post Here to Contact Site Administrators and Moderators
I have two different accounts under two names. That is my fault and I own that issue. I would like to combine the two account or just remove one of them. How do I go about doing that on this site. (1 Reply)
Discussion started by: crobinson
1 Replies
6. Post Here to Contact Site Administrators and Moderators
I have two accounts, one for gmail and one for all other Google applications. I would like to put the gmail account on the same account as the others.
I like Google, and all the products offered. However, it has been very difficult and frustrating to find this forum, and to figure out how to... (2 Replies)
Discussion started by: chaimelle
2 Replies
7. Solaris
Hi All,
How to know all the shells a user has access.
Thank you . (0 Replies)
Discussion started by: rama krishna
0 Replies
8. Shell Programming and Scripting
// AIX 6.1
In need of finding which AIX user accounts will be expired and are
locked.
I have placed the following parameters under /etc/security/user... (1 Reply)
Discussion started by: Daniel Gate
1 Replies
LEARN ABOUT OPENDARWIN
su
SU(1) BSD General Commands Manual SU(1)
NAME
su -- substitute user identity
SYNOPSIS
su [-flm] [login] [-c shell arguments]
DESCRIPTION
su requests the password for login and switches to that user and group ID after obtaining proper authentication. A shell is then executed,
and any additional shell arguments after the login name are passed to the shell. If su is executed by root, no password is requested and a
shell with the appropriate user ID is executed.
The options are as follows:
-c Invoke the following command in a subshell as the specified user.
-f If the invoked shell is csh(1), this option prevents it from reading the ``.cshrc'' file.
-l Simulate a full login. The environment is discarded except for HOME, SHELL, PATH, TERM, and USER. HOME and SHELL are modified as
above. USER is set to the target login. PATH is set to ``/bin:/usr/bin''. TERM is imported from your current environment. The
invoked shell is the target login's, and su will change directory to the target login's home directory. This option is identical to
just passing "-", as in "su -".
-m Leave the environment unmodified. The invoked shell is your login shell, and no directory changes are made. As a security precau-
tion, if the target user's shell is a non-standard shell (as defined by getusershell(3)) and the caller's real uid is non-zero, su
will fail.
The -l and -m options are mutually exclusive; the last one specified overrides any previous ones.
Only users in group ``wheel'' (normally gid 0) or group ``admin'' (normally gid 20) can su to ``root''.
By default (unless the prompt is reset by a startup file) the super-user prompt is set to ``#'' to remind one of its awesome power.
SEE ALSO
csh(1), login(1), sh(1), skey(1), kinit(1), kerberos(1), passwd(5), group(5), environ(7)
ENVIRONMENT
Environment variables used by su :
HOME Default home directory of real user ID unless modified as specified above.
PATH Default search path of real user ID unless modified as specified above.
TERM Provides terminal type which may be retained for the substituted user ID.
USER The user ID is always the effective ID (the target user ID) after an su unless the user ID is 0 (root).
HISTORY
A su command appeared in Version 7 AT&T UNIX.
BSD
April 18, 1994 BSD