- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: Account restrictions question(s):
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-22-2010 08:05 AM
тАО01-22-2010 08:05 AM
Account restrictions question(s):
2. Can a non-privileged user account be denied remote login, but still allowed local login via a local console?
3. Can a non-privileged user account be denied both remote and local login, but allow the account to remain UNLOCKED to permit another user the ability to SU to the account?
4. What account restriction options [From Question #1] would prevent or affect the use of CRON and AT jobs created and executed by the non-privileged user account?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-22-2010 09:26 AM
тАО01-22-2010 09:26 AM
Re: Account restrictions question(s):
I'm not sure what the above means regarding "restrict the use"? Limit times, locations, actions, all of the above, none?
2. Can a non-privileged user account be denied remote login, but still allowed local login via a local console?
I know of nothing "built-in" that will do this (which doesn't mean much), but you could do something the the profiles to examine where the login is coming from and react accordingly.
3. Can a non-privileged user account be denied both remote and local login, but allow the account to remain UNLOCKED to permit another user the ability to SU to the account?
Yes. Other options might include sudo, powerbroker, role based access controls, or ????
4. What account restriction options [From Question #1] would prevent or affect the use of CRON and AT jobs created and executed by the non-privileged user account?
see the man pages for "cron" and "at", "cron.deny", "at.deny", "cron.allow" and "at.allow"
Perhaps description of what you hope to accomplish might be in order
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-26-2010 09:14 AM
тАО01-26-2010 09:14 AM
Re: Account restrictions question(s):
I'm not sure what the above means regarding "restrict the use"? Limit times, locations, actions, all of the above, none?
Restrict the use means restrict the user from accessing, so "all of the above".
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-26-2010 09:19 AM
тАО01-26-2010 09:19 AM
Re: Account restrictions question(s):
-delete the user
-lock the user
-change the password to some unknown/invalid password
-change the default shell to an invalid shell
Perhaps it would help if you explained what the user should be able to do.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-26-2010 01:54 PM
тАО01-26-2010 01:54 PM
Re: Account restrictions question(s):
>
OK, let's try again.....
using the same word your attempting to define, in this case "restrict", to define itself, doesn't help much...
should the "restricted" user every be able to login? should he/she only be able to do certain things?
I know YOU know what you mean, but it certainly isn't obvious from the "outside looking in".
You're probably going to need to eihter:
a) state, exactly, what limitations you wish to place on said user, -or-
b) enumerate what they should be able to do.....