https://community.hpe.com/t5/operating-system-hp-ux/administrators-users-other-than-root/m-p/2443342#M759671 <BR />We do the same here, but setup rootxx users in the passwd file with the actual root account disabled. all rootxx (initials) accounts are same uid/gid as root, but now logging is a lot easier and individual root users are now traceable and accountable. Thu, 07 Sep 2000 07:44:11 GMT Stefan Farrelly 2000-09-07T07:44:11Z https://community.hpe.com/t5/operating-system-hp-ux/administrators-users-other-than-root/m-p/2443339#M759668 I want to set up extra administrator users for mine HP-UX systems so that i can let login root only from the console. What is the best way to do this and what is the best configuration (rights, groups etc) for mine administrator users.<BR />This users must be able to do 90% or more of root?s work is my guess.<BR />So, who can help me with this. Thu, 07 Sep 2000 07:21:51 GMT https://community.hpe.com/t5/operating-system-hp-ux/administrators-users-other-than-root/m-p/2443339#M759668 ALH 2000-09-07T07:21:51Z https://community.hpe.com/t5/operating-system-hp-ux/administrators-users-other-than-root/m-p/2443340#M759669 Hi:<BR />there have been a couple of threads about sudo (a utility that you can set up to allow ordinary users selective access to certain super user commands). You can do a search in the forums for sudo... but to get you started here you are:<BR /><BR /><A href="http://my1.itrc.hp.com/cm/QuestionAnswer/1,1150,0x49537e990647d4118fee0090279cd0f9,00.html" target="_blank">http://my1.itrc.hp.com/cm/QuestionAnswer/1,1150,0x49537e990647d4118fee0090279cd0f9,00.html</A><BR /><A href="http://my1.itrc.hp.com/cm/QuestionAnswer/1,1150,0x96c0119c3420d411b66300108302854d,00.html" target="_blank">http://my1.itrc.hp.com/cm/QuestionAnswer/1,1150,0x96c0119c3420d411b66300108302854d,00.html</A><BR /><BR />good luck<BR /> Thu, 07 Sep 2000 07:29:07 GMT https://community.hpe.com/t5/operating-system-hp-ux/administrators-users-other-than-root/m-p/2443340#M759669 Kofi ARTHIABAH 2000-09-07T07:29:07Z https://community.hpe.com/t5/operating-system-hp-ux/administrators-users-other-than-root/m-p/2443341#M759670 Hi,<BR /><BR />to restrict root login to console create the file /etc/securetty and add the word console to it.<BR />For your other admins i would recommend to use sudo.<BR /><BR />Regards<BR /><BR />Andrew Thu, 07 Sep 2000 07:29:50 GMT https://community.hpe.com/t5/operating-system-hp-ux/administrators-users-other-than-root/m-p/2443341#M759670 Andreas Voss 2000-09-07T07:29:50Z https://community.hpe.com/t5/operating-system-hp-ux/administrators-users-other-than-root/m-p/2443342#M759671 <BR />We do the same here, but setup rootxx users in the passwd file with the actual root account disabled. all rootxx (initials) accounts are same uid/gid as root, but now logging is a lot easier and individual root users are now traceable and accountable. Thu, 07 Sep 2000 07:44:11 GMT https://community.hpe.com/t5/operating-system-hp-ux/administrators-users-other-than-root/m-p/2443342#M759671 Stefan Farrelly 2000-09-07T07:44:11Z