Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: passwd -l script
Top Forums Shell Programming and Scripting passwd -l script Post 63055 by antalexi on Tuesday 22nd of February 2005 01:12:59 PM
Old 02-22-2005
passwd -l script
I need to lockout about 250 user accounts on a server. I figure on putting the user accounts to be locked out in a text file and the running a script to go through the file and run the "passwd -l useraccount" against the /etc/passwd file (yes, I am root as I do this).

Here is what I have so far:

#!/bin/sh
# BE CAUTIOUS!! This will modify the /etc/passwd file to lockout terminated
# employee accounts using the 'passwd -l useraccount' command.
# copy this to servername under the /etc directory. Make sure the
# text file that has the user accounts to be deleted is also copied to servername.

# create variables
TERMED="terminated"
# LOCATION_EMAIL="myemail@mycompany.com"
for GONE in `/etc/seeya`
do
echo "**********************************" > $TERMED
passwd -l $GONE
echo "This user account, "$GONE", is locked on `date +%m/%d/%y`." >> $TERMED
echo " " >> $TERMED

(do I put a 'done' statement here?)
#mail results of TERMED
#cat $TERMED |uuencode $GONE.wri | mailx -s "$GONE account locked" $LOCATION_EMAIL
# delete TERMED to make room for next on list.
# rm $TERMED

It seems pretty simple, but what if there is a useraccount in my list, but not in the /etc/passwd file? or vice-versa? other error messages?
Also, is my email statement right? I don't want 200+ individual emails, just one email showing the contents of $TERMED.

Thanks for the help. Smilie
 

10 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

setting passwd in script

HP-UX 11 I currently have a script that is running useradd and passwd commands to automate setting up new users. It was originally designed so that passwd was run with -d -f to delete a passwd and force user to set passwd at next login. Now mgmt wants instead to set a first-time passwd and have... (2 Replies)
Discussion started by: LisaS
2 Replies

2. Shell Programming and Scripting

passwd in shell script

Is there a way to change user password using passwd command in shell script? I don't want to use expect. Please help (8 Replies)
Discussion started by: corny
8 Replies

3. Infrastructure Monitoring

need script for passwd , can't use expect tool

Hi , as others users here , i'm searching for a script which can automate "passwd" dialog . I saw threads about "expect tool" but on my platforms , "C" product isn't installed and i'm not the admin so i can't install it. is there another way to do it , with a "simple" shell script ??? ... (35 Replies)
Discussion started by: Nicol
35 Replies

4. Shell Programming and Scripting

passwd on a simple script

hi guys I am working on a script which is basically a menu for some linux operators... I need on this menu for the operators the option to change the password... This are 2 linux servers using Linux heartbeat. what I need is to change change the password using passwd command and replica... (10 Replies)
Discussion started by: karlochacon
10 Replies

5. Solaris

passwd cmd reenables passwd aging in shadow entry

Hi Folks, I have Solaris 10, latest release. We have passwd aging set in /etc/defalut/passwd. I have an account that passwd should never expire. Acheived by emptying associated users shadow file entries for passwd aging. When I reset the users passwd using passwd command, it re enables... (3 Replies)
Discussion started by: BG_JrAdmin
3 Replies

6. Shell Programming and Scripting

Modify /etc/passwd via script

We have a business need to modify the /etc/passwd file every time a new user gets added, because the user ID begins with a zero. When you create the new user in smit, even if you put the leading zero in, it does not retain it when the entry is added. That being said, I need to create a script... (11 Replies)
Discussion started by: mshilling
11 Replies

7. Solaris

Solaris passwd script

Hello all, Since Solaris passwd does not have --stdin option can you advise how to change the password for 30 users with a script. The password can be the same one. I`ve tried already echoing, xargs, cat and similar. Thanks. ---------- Post updated at 04:04 AM ---------- Previous update... (0 Replies)
Discussion started by: click
0 Replies

8. Shell Programming and Scripting

Need script to monitor change in /etc/passwd

Hi All, From Audit point of view, I need to add a script to my production Solaris servers. That should be able to mail me, if any user is added or removed. That means, I should get a mail, what user is deleted or added in /etc/passwd, i.e. if there is a change in this file, I should be... (8 Replies)
Discussion started by: solaris_1977
8 Replies

9. Shell Programming and Scripting

Script to generate passwd comb.

Hi I created a gnupg password which I later forgot clumsy enough (after a holiday). I can always create a new one but unfortunately I have some files on the computer that I encrypted with it and would like to access it. I remember parts of the password and was wondering what's the the best way to... (0 Replies)
Discussion started by: zaonline
0 Replies

10. AIX

When did AIX start using /etc/security/passwd instead of /etc/passwd to store encrypted passwords?

Does anyone know when AIX started using /etc/security/passwd instead of /etc/passwd to store encrypted passwords? (1 Reply)
Discussion started by: Anne Neville
1 Replies

LEARN ABOUT DEBIAN

sync-accounts-createuser

SYNC-ACCOUNTS-CREATEUSER(8)					 chiark utilities				       SYNC-ACCOUNTS-CREATEUSER(8)

NAME

       sync-accounts-createuser - helper/hook program for sync-accounts

SYNOPSIS

       SYNCUSER_CREATE_var=value... sync-accounts-createuser

DESCRIPTION

       sync-accounts-createuser is invoked by sync-accounts when sync-accounts is creating a local account.

       It must perform all of the tasks involved with local account creation except for the actual changes to the password, shadow and group data-
       bases.

       At the very minimum, it must create the new account's home directory (with appropriate permissions).  The supplied sync-accounts-createuser
       script does exactly that.

       It may also suggest to sync-accounts modifications to the new account's passwd entry.

INVOCATION

       When  sync-accounts-createuser  is  invoked, the passwd and group entries will not yet have been set up, so it may not rely on them.  sync-
       accounts-createuser will not be supplied with any arguments.  However, the following environment variables  will  be  set,  giving  details
       about the account to be created:
	 SYNCUSER_CREATE_USER
	 SYNCUSER_CREATE_UID
	 SYNCUSER_CREATE_GID
	 SYNCUSER_CREATE_COMMENT
	 SYNCUSER_CREATE_HOME
	 SYNCUSER_CREATE_SHELL

RESULTS

       sync-accounts-createuser should usually produce no output.

       It  can	inhibit  the  creation	of the user by outputting a single line not containing a colon; in this case, a diagnostic message will be
       written to sync-accounts's logfile, and the user will be skipped.

       Alternatively, it may write out an alternative password file entry, in which case sync-accounts will use the supplied data  for	the  local
       passwd  file instead of that from the remote host.  The line should be in Sys-V passwd file format (regardless of localformat or remotefor-
       mat settings).  The username field should be taken from SYNCUSER_CREATE_USER, and the password field should be x.

EXIT STATUS

       0      All went well, or we wrote a line without a colon to say that the account should not be created.

       any other
	      There were serious problems and sync-accounts should bomb out immediately.

FILES

       None.

ENVIRONMENT

       See above.

BUGS

       The supplied sync-accounts-createuser does not check that it was not supplied with any arguments; nor does it check that the  SYNCUSER_CRE-
       ATE_* variables are set, or have sensible values.

AUTHOR

       sync-accounts-createuser and this manpage were written by Ian Jackson <ian@chiark.greenend.org.uk>.  They are Copyright 1999-2002 Ian Jack-
       son <ian@davenant.greenend.org.uk>.  This manpage forms part of the sync-accounts package.

       sync-accounts-createuser and the sync-accounts package are free software; you can redistribute it and/or modify it under the terms  of  the
       GNU General Public License as published by the Free Software Foundation; either version 3, or (at your option) any later version.

       This  is  distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
       FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for more details.

       You should have received a copy of the GNU General Public License along with this program; if not, consult the Free  Software  Foundation's
       website at www.fsf.org, or the GNU Project website at www.gnu.org.

SEE ALSO

       sync-accounts(8), sync-accounts(5), passwd(5)

Greenend							  14th July 2002				       SYNC-ACCOUNTS-CREATEUSER(8)
All times are GMT -4. The time now is 01:37 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy