10 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
Hi ,
I want to create 3 different user with below privilege in Solaris and Linux.
1) Read Only
2)Read and Write Only
3) Admin user
Can you guys help me on this . (3 Replies)
Discussion started by: Naveen Pathak
3 Replies
2. Red Hat
Hi,
In the following output you can see the the user "richard" is a member on the team/group "developers":
# id richard
uid=10247(richard) gid=100361(developers) groups=100361(developers),10053(testers)
but in the following details of the said group (developers), the said user... (3 Replies)
Discussion started by: indiansoil
3 Replies
3. Shell Programming and Scripting
Hi, I'm new to the world of UNIX and have been asked to create a complex script (at least complex to me:confused:) for AIX UNIX to create a report of all the users on the server including server, user, UID, groups, GID, etc.
Found a script using lsuser, but the output is still lacking. 2 things I... (2 Replies)
Discussion started by: panthur
2 Replies
4. Solaris
I have performed the following with lower case group and usernames and the only difference is that the error message under groupadd goes away, yet I am still unable to successfully add a user WITH a home directory.
This is in Solaris 10. I am able to add a group, add a user, add the users... (3 Replies)
Discussion started by: Showflash
3 Replies
5. Ubuntu
Hi,
Anyone can help me on how to duplicate privileges and group for useroradb01 to userrootdb01. I have currently using "useroradb01" and create a newly user "userrootdb01".
I want both in the sames privileges and group. Please see the existing users list below;
drwxr-xr-x 53 useroradb01... (0 Replies)
Discussion started by: fspalero
0 Replies
6. UNIX for Dummies Questions & Answers
Hi,
How can I restrict access to a set of people in a group on a directory?
Ex.. The following are the permissions on a directory (dir1)
rwxrwxr-- own1 grp1 dir1
where own1 is the owner
grp1 is the group name
and dir1 is the directory name.
So., Is there any way that only few id's in... (0 Replies)
Discussion started by: brahmi
0 Replies
7. AIX
Hello,
I am new in AIX please tell how can i create user and add group in this user for example, i want to create user umair and want to add this user primanry group DBA and secondary group ORACLE,how can i do this please tell in detail
Thanks,
Umair (1 Reply)
Discussion started by: umair
1 Replies
8. AIX
How to assign superuser privilege to an ordinary user temporarily (1 Reply)
Discussion started by: udtyuvaraj
1 Replies
9. UNIX for Advanced & Expert Users
Upon trying to open up permissions between 2 accounts in Snow Leopard I caused the os to crash - restarting/turning off then on did nothing - the os would no longer load. I took it into Apple where they got the os back up and running with a slight twist. The secondary drive was flagged (a little... (0 Replies)
Discussion started by: Alexander4444
0 Replies
10. HP-UX
Hi,
Please any one can help me to know that how we can restrict a user group to access the kernel at all. (0 Replies)
Discussion started by: harishankar
0 Replies
PAM_GROUP(8) Linux-PAM Manual PAM_GROUP(8)
NAME
pam_group - PAM module for group access
SYNOPSIS
pam_group.so
DESCRIPTION
The pam_group PAM module does not authenticate the user, but instead it grants group memberships (in the credential setting phase of the
authentication module) to the user. Such memberships are based on the service they are applying for.
By default rules for group memberships are taken from config file /etc/security/group.conf.
This module's usefulness relies on the file-systems accessible to the user. The point being that once granted the membership of a group,
the user may attempt to create a setgid binary with a restricted group ownership. Later, when the user is not given membership to this
group, they can recover group membership with the precompiled binary. The reason that the file-systems that the user has access to are so
significant, is the fact that when a system is mounted nosuid the user is unable to create or execute such a binary file. For this module
to provide any level of security, all file-systems that the user has write access to should be mounted nosuid.
The pam_group module functions in parallel with the /etc/group file. If the user is granted any groups based on the behavior of this
module, they are granted in addition to those entries /etc/group (or equivalent).
OPTIONS
This module does not recognise any options.
MODULE TYPES PROVIDED
Only the auth module type is provided.
RETURN VALUES
PAM_SUCCESS
group membership was granted.
PAM_ABORT
Not all relevant data could be gotten.
PAM_BUF_ERR
Memory buffer error.
PAM_CRED_ERR
Group membership was not granted.
PAM_IGNORE
pam_sm_authenticate was called which does nothing.
PAM_USER_UNKNOWN
The user is not known to the system.
FILES
/etc/security/group.conf
Default configuration file
SEE ALSO
group.conf(5), pam.d(5), pam(7).
AUTHORS
pam_group was written by Andrew G. Morgan <morgan@kernel.org>.
Linux-PAM Manual 06/04/2011 PAM_GROUP(8)
04-16-2009
How to create/restrict a user with to have no privilege from other group