I added the keytool command in the do while loop as below.
But instead asking user to input the details the keytool is reading input from hello.txt and fails with the below error.
Quote:
Enter keystore password: Re-enter new password: They don't match. Try again
Enter keystore password: Keystore password is too short - must be at least 6 characters
Enter keystore password: Keystore password is too short - must be at least 6 characters
Too many failures - try later
As a system administrator. sometimes we see the users are trying some commands dangerous for the system health and remove them from their individual coomand history file.
How it is possible to enforce that the normal usres will will not be able to modify the history.
Thanks in advance.
Partha (4 Replies)
Hi,
I need to implement something that will enforce login to a Solaris server as a particular, specifed user. After this login stage, users will be able to "su -" to whichever user they wish, by which time their activity will be captured by some sort of script (yet to be written). What I need... (7 Replies)
Hi All,
How to enforce all users to change their password when they try to login.
I am having Solaris 9 and 10.
Even it would be much better if anyone can say to enforce all users to change their password next morning they login.
Thanks in advance,
Deepak (3 Replies)
Q. Write a script that behaves both in interactive and non interactive mode. When no arguments are supplied it picks up each C program from the directory and prints first 10 lines.
It then prompts for deletion of the file.
If user supplies arguments with the script , then it works on those files... (1 Reply)
Q. Write a script that behaves both in interactive and non interactive mode. When no arguments are supplied it picks up each C program from the directory and prints first 10 lines.
It then prompts for deletion of the file.
If user supplies arguments with the script , then it works on those files... (8 Replies)
Friends,
I'm in search of a keytool command which pulls the expiration dates of certificates in keystore. I have around 200 certs in my keystore, so would like to know if we have any script/command which can pull expiration dates of certificates at one run. (3 Replies)
here is my script that expects the user to run it like
./best.sh -f /tmp/log.txt
more best.sh
#!/bin/bash
while getopts ":f:" opt; do
case $opt in
f) file_in="$OPTARG"
;;
\?) echo "Invalid option -$OPTARG" >&2
;;
esac
done uname -a
SunOS mymac 5.11 11.2 sun4v... (15 Replies)
I first generated jks using
keytool -genkey -alias keyAlias-keyalg RSA -keypass changeit -storepass changeit keystore keystore.jksThen i generated the csr using
keytool -certreq -alias $addr -sigalg SHA256withRSA -keystore $addr.jks -file $addr.csr Below is how i self sign and generate the... (0 Replies)
Hi.
I inject my tracklogin.sh script in the profile of each user.
$ more .profile
./tracklogin.sh
# This is the default standard profile provided to a user.
MAIL=/usr/mail/${LOGNAME:?}
bash-3.2$ more tracklogin.sh
#!/bin/bash
tdate=$(date +"%d%m%y")
mkdir -p /tmp/root_log... (20 Replies)
Discussion started by: mohtashims
20 Replies
LEARN ABOUT SUNOS
wanboot_keymgmt
wanboot_keymgmt(1M) System Administration Commands wanboot_keymgmt(1M)NAME
wanboot_keymgmt - insert and extract keys
SYNOPSIS
/usr/lib/inet/wanboot/keymgmt -i -k key_file -s keystore -o type=keytype
/usr/lib/inet/wanboot/keymgmt -x -f outfile -s keystore -o type=keytype
DESCRIPTION
The keymgmt utility has two purposes:
o To take a raw key, stored in key_file, and insert it in the repository specified by keystore.
o To extract a key of a specified type from the repository specified by keystore, depositing it in outfile.
outfile will be created if it does not already exist. The type of key being added or extracted is specified by keytype and may have one of
four values: 3des, aes, rsa, or sha1 (the last used by HMAC SHA-1). When extracting a key, the first key with an OID matching the supplied
type is used.
ARGUMENTS
The following arguments are supported:
-i
Used in conjunction with -k to insert a raw key in keystore.
-f outfile
Used to specify a file to receive an extracted key.
-k key_file
Used in conjunction with -i to specify the file in which a raw key is stored. This key will be inserted in keystore.
-o type=keytype
Specifies the type of key being inserted or extracted. Must be one of 3des, aes, rsa, or sha1.
-s keystore
Specifies a repository in which a key will be inserted or from which a key will be extracted.
-x
Used in conjunction with -f to extract a key of a specified type and deposit it in outfile.
EXIT STATUS
0
Successful operation.
>0
An error occurred.
ATTRIBUTES
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Availability |SUNWwbsup |
+-----------------------------+-----------------------------+
|Interface Stability |Obsolete |
+-----------------------------+-----------------------------+
SEE ALSO attributes(5)
ITU-T Recommendation X.208
SunOS 5.10 18 Apr 2003 wanboot_keymgmt(1M)