Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

pam_rootok(8) [centos man page]

PAM_ROOTOK(8)							 Linux-PAM Manual						     PAM_ROOTOK(8)

pam_rootok - Gain only root access SYNOPSIS [debug] DESCRIPTION
pam_rootok is a PAM module that authenticates the user if their UID is 0. Applications that are created setuid-root generally retain the UID of the user but run with the authority of an enhanced effective-UID. It is the real UID that is checked. OPTIONS
debug Print debug information. MODULE TYPES PROVIDED
The auth, acct and password module types are provided. RETURN VALUES
In the case of the su(1) application the historical usage is to permit the superuser to adopt the identity of a lesser user without the use of a password. To obtain this behavior with PAM the following pair of lines are needed for the corresponding entry in the /etc/pam.d/su configuration file: # su authentication. Root is granted access by default. auth sufficient auth required SEE ALSO
su(1), pam.conf(5), pam.d(5), pam(8) AUTHOR
pam_rootok was written by Andrew G. Morgan, <>. Linux-PAM Manual 09/19/2013 PAM_ROOTOK(8)

Check Out this Related Man Page

PAM_WHEEL(8)							 Linux-PAM Manual						      PAM_WHEEL(8)

pam_wheel - Only permit root access to members of group wheel SYNOPSIS [debug] [deny] [group=name] [root_only] [trust] DESCRIPTION
The pam_wheel PAM module is used to enforce the so-called wheel group. By default it permits root access to the system if the applicant user is a member of the wheel group. If no group with this name exist, the module is using the group with the group-ID 0. OPTIONS
debug Print debug information. deny Reverse the sense of the auth operation: if the user is trying to get UID 0 access and is a member of the wheel group (or the group of the group option), deny access. Conversely, if the user is not in the group, return PAM_IGNORE (unless trust was also specified, in which case we return PAM_SUCCESS). group=name Instead of checking the wheel or GID 0 groups, use the name group to perform the authentication. root_only The check for wheel membership is done only. trust The pam_wheel module will return PAM_SUCCESS instead of PAM_IGNORE if the user is a member of the wheel group (thus with a little play stacking the modules the wheel members may be able to su to root without being prompted for a passwd). MODULE TYPES PROVIDED
The auth and account module types are provided. RETURN VALUES
PAM_AUTH_ERR Authentication failure. PAM_BUF_ERR Memory buffer error. PAM_IGNORE The return value should be ignored by PAM dispatch. PAM_PERM_DENY Permission denied. PAM_SERVICE_ERR Cannot determine the user name. PAM_SUCCESS Success. PAM_USER_UNKNOWN User not known. EXAMPLES
The root account gains access by default (rootok), only wheel members can become root (wheel) but Unix authenticate non-root applicants. su auth sufficient su auth required su auth required SEE ALSO
pam.conf(5), pam.d(5), pam(7) AUTHOR
pam_wheel was written by Cristian Gafton <>. Linux-PAM Manual 05/31/2011 PAM_WHEEL(8)
Man Page

15 More Discussions You Might Find Interesting

1. Cybersecurity

Root Priviledges

I run a HP-9000 system with HP-UX version 11.0 and Informix-4GL version 7.2. I run this system for the military. There was a security issue where only a select few could have the UID of "0". One of those individuals is me (I am the SA). My question is how can i setup my personnel to be able to... (2 Replies)
Discussion started by: JackieRyan26
2 Replies

2. OS X (Apple)

Setting the UID in Mac OS X

Hello, Does anyone know the best way to create a user in Mac OS X with a specific UID? One (ugly) possibility seems to be to create the user, and then use netinfomanager to fix the UID, and then to run chown on all the user's files, but is there a more elegant way? Thanks, Noah (1 Reply)
Discussion started by: noahcowan
1 Replies

3. AIX

User ID (UID) in AIX

what is the upper limit for UID is AIX 5.3 ? (1 Reply)
Discussion started by: learner
1 Replies

4. UNIX for Dummies Questions & Answers

How can I get only the number of the UID from id command?

Hello im using sun Solaris, I need to get the user id number (generating unique id's) but I fail to find switch to get only the number of the id thanks for the help (5 Replies)
Discussion started by: umen
5 Replies

5. AIX

UIDs being overwritten immediately

We have a problem where we delete a user and their associated UID gets dumped back in the UID pool. The if we immediately create a another (new) user, AIX reuses the last UID, the one that was just released. This is causing a problem when reports are being generated because the new users name is... (2 Replies)
Discussion started by: xsys2000
2 Replies

6. UNIX for Dummies Questions & Answers

Prompting for Input - Getting Undefined Variable

#!/bin/csh -f echo "Enter MEUPS User Id :-" read UID echo "You entered $UID" --------------------------------------- Whn executed, I get an error message "UID: Undefined variable" (1 Reply)
Discussion started by: Kartheg
1 Replies

7. AIX


Can we create new user with same UID?? why do we need that and what is the purpose to create like that (3 Replies)
Discussion started by: senmak
3 Replies

8. UNIX for Dummies Questions & Answers

How to get the username if I know only the user's UID?

Hi, I know the user's UID, but I need to know the user's username which has this UID. How can I do it?? Any ideas? Thanks! (7 Replies)
Discussion started by: rodrigoroma
7 Replies

9. HP-UX

Help reserving UID ranges?

We have recently merged 2 old systems onto a newer Itanium platform. As part of this work we merged the password files and assigned new UID's beginning from 1000. I have a user add script that admins can use to add a user, however this assigns the next available UIB (in the low 100's) rather than... (3 Replies)
Discussion started by: fulhamfcboy
3 Replies

10. UNIX for Dummies Questions & Answers

Duplicated UID

Hi folks! I need you help to discover what's the impact of a duplicated UID in an operating system. What's the meaning when someone put in different users the same UID? (3 Replies)
Discussion started by: phcostabh
3 Replies

11. AIX

More than 1 UID 0

Hi, Can any one please tell what are the risks of having more than one users having UID 0 (root)? Thanks Naveed (9 Replies)
Discussion started by: naveedaix
9 Replies

12. UNIX for Dummies Questions & Answers

Common UID's and PID's

Hey Folks, I'm a newbie to Unix. Sorry if this doubt sounds very silly. I know that first 100 UID's are used by system accounts and the rest, for normal users. It'd be great if someone could guide me to a link where i can browse through the list of 100 system managed accounts with their UID's.... (2 Replies)
Discussion started by: prithvirao17
2 Replies

13. Shell Programming and Scripting

awk three conditions

I'm having a problem pulling UID's from data. The data outputs a user's UID in one of three ways: 1. Error User user_name already assigned with <UID> 2. Success <UID> reserved for user_name 3. <a load of crap because there was a db failure yet somehow the UID is still in there> I typically... (5 Replies)
Discussion started by: MaindotC
5 Replies

14. UNIX for Dummies Questions & Answers

Please help with find and replace

Hi, I have two files on Linux. One is the password file and the new file which has the userID and new UID. Is there any easy way to update this? Here is the example of the new file. 21725 xyz1 21777 user2 21789 xyz Passwd file is leej:x:10808:10808:Joseph Lee... (3 Replies)
Discussion started by: samnyc
3 Replies

15. Shell Programming and Scripting

Ps - list where UID is numeric or name and for current user

Hi, 'ps -ef' returns output of the following format UID PID PPID C STIME TTY TIME CMD root 17573 1 0 Sep12 tty6 00:00:00 /sbin/mingetty tty6 hpsmh 18150 14864 0 Sep12 ? 00:00:00 /opt/hp/hpsmh/sbin/hpsmhd -DSSL -f /opt/hp/hpsmh/conf/smhpd.conf root ... (3 Replies)
Discussion started by: ysrini
3 Replies