https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660911#M242064 If you want to audit user actions, then converting to trusted mode will allow you to do that.<BR /><BR />After you convert to trusted mode you will have to activate the auditing - you can do this via SAM or the command line. Be aware that auditing can, and usually does, consume large amounts of disk space for the log files.<BR /><BR />One more note - when you convert to trusted mode, any user password over 8 charactors will be truncated. Mon, 31 Oct 2005 09:56:49 GMT DCE 2005-10-31T09:56:49Z https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660903#M242056 i'd like to audit users actions. should i convert my system to a trusted system ? Mon, 31 Oct 2005 06:00:12 GMT https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660903#M242056 Nabil Boussetta 2005-10-31T06:00:12Z https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660904#M242057 hello<BR />u have many advantages if u are convert to the trusted system<BR /><BR /><BR />look this link too:<BR /><A href="http://docs.hp.com/en/B2355-90121/index.html" target="_blank">http://docs.hp.com/en/B2355-90121/index.html</A><BR />regrads gga Mon, 31 Oct 2005 06:08:23 GMT https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660904#M242057 GGA 2005-10-31T06:08:23Z https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660905#M242058 You will have to.<BR />When you convert to trusted mode all passwords will expire. To take care of this do /usr/lbin/modprpw -V<BR /><BR />If you use SAM to convert to trusted mode, you do need to use /usr/lbin/modprpw -V Mon, 31 Oct 2005 06:14:49 GMT https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660905#M242058 RAC_1 2005-10-31T06:14:49Z https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660906#M242059 is there some disadvantage when converting to a trusted system. <BR />why HP don't give this functionnality by default ? Mon, 31 Oct 2005 06:25:56 GMT https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660906#M242059 Nabil Boussetta 2005-10-31T06:25:56Z https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660907#M242060 There is a very little overhead when converted to trsuted mode. Why HP does not give this a as default will have amny answers.<BR /><BR />For you information, with 11i V2 next realease trusted mode will be oboletet. It is being replaced by trusted security extension product. (or something smimilar. Look/search at hp) Mon, 31 Oct 2005 06:33:46 GMT https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660907#M242060 RAC_1 2005-10-31T06:33:46Z https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660908#M242061 hello<BR />there is "more" administrative task to do<BR /><BR />regrads gga Mon, 31 Oct 2005 06:37:37 GMT https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660908#M242061 GGA 2005-10-31T06:37:37Z https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660909#M242062 someone tells me that you C compiler and graphical interface will not function.<BR /><BR />is that true ? Mon, 31 Oct 2005 06:54:11 GMT https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660909#M242062 Nabil Boussetta 2005-10-31T06:54:11Z https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660910#M242063 Almost everything will function as it is. Some applications that depend on getpwent may be needed to adjust. Now they should be maing getpwnam sys call. Mon, 31 Oct 2005 06:59:10 GMT https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660910#M242063 RAC_1 2005-10-31T06:59:10Z https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660911#M242064 If you want to audit user actions, then converting to trusted mode will allow you to do that.<BR /><BR />After you convert to trusted mode you will have to activate the auditing - you can do this via SAM or the command line. Be aware that auditing can, and usually does, consume large amounts of disk space for the log files.<BR /><BR />One more note - when you convert to trusted mode, any user password over 8 charactors will be truncated. Mon, 31 Oct 2005 09:56:49 GMT https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660911#M242064 DCE 2005-10-31T09:56:49Z https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660912#M242065 There is a utility that can work in conjunction with sudo. This utility is called 'rootsh' Have the users invoke rootsh via sudo commands and there will be a keystroke-by-keystroke log file with the output of user's commands.<BR /><BR /><BR /> Mon, 31 Oct 2005 10:20:40 GMT https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660912#M242065 Rick Garland 2005-10-31T10:20:40Z https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660913#M242066 One of the reasons Trusted System isn't the default - is that it is supported by some third party apps.<BR /><BR />Example - we use a a central managemanet system for controlling access to all our systems - whether they are HP, IBM, Sun or Linux.<BR /><BR />Rgds...Geoff Mon, 31 Oct 2005 10:55:39 GMT https://community.hpe.com/t5/operating-system-hp-ux/audit-users-actions/m-p/3660913#M242066 Geoff Wild 2005-10-31T10:55:39Z