topic Re: tcb and passwd in Operating System - HP-UX

tcb and passwd

Keith Floyd — Wed, 20 Sep 2000 13:00:08 GMT

Hi

Is it possible to run tcb - and gain from a hidden /tcb but at the same time allow users to have no passwd set ?? The aim here is to let the application (Oracle) secure the users

???

Any ideas ??

Thanks
Keith

Re: tcb and passwd

Stefan Farrelly — Wed, 20 Sep 2000 13:01:57 GMT

Yes, you can run a trusted system so the passwords are not visible in /etc/passwd and still have accounts with whatever type of password you want, or no password. But you will need to use SAM to set their security policy to allow no password, or use the modprpw command.

Re: tcb and passwd

CHRIS_ANORUO — Wed, 20 Sep 2000 13:05:31 GMT

Yes, you can setup the account with null password through SAM

Re: tcb and passwd

Keith Floyd — Wed, 20 Sep 2000 14:13:49 GMT

thanks so far

But I am missing the idiot guide on how to go about it - probably obvious but -it's not working

Keith

Re: tcb and passwd

Keith Floyd — Wed, 20 Sep 2000 14:29:46 GMT

thanks so far

But I am missing the idiot guide on how to go about it - probably obvious but -it's not working

Keith

Re: tcb and passwd

Tom Danzig — Wed, 20 Sep 2000 14:38:42 GMT

Fire up SAM.
Go to Accounts for users and groups.
Go to users
Highlight the user name to modify.
Click Actions -> Modify Security Policies.
Click Password Format Policies.
Change Allow Null Password to Yes

Re: tcb and passwd

Kofi ARTHIABAH — Wed, 20 Sep 2000 14:43:28 GMT

Keith:

couple of questions - must the users have unix accounts? or can the frontend application (on their desktop) talk directly (eg. through sqlnet) to oracle. If that is the case then you do not need to create unix level accounts for them - or indeed, you could create unix level accounts but you would have to use the suggestions above - ie use SAM to allow null passwd policy.

Good luck