- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: Account restrictions question(s):
Operating System - HP-UX
1752339
Members
5740
Online
108787
Solutions
Forums
Categories
Company
Local Language
юдл
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
юдл
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-22-2010 08:05 AM
тАО01-22-2010 08:05 AM
Account restrictions question(s):
1. What options are available to restrict the use of a non-privileged user account?
2. Can a non-privileged user account be denied remote login, but still allowed local login via a local console?
3. Can a non-privileged user account be denied both remote and local login, but allow the account to remain UNLOCKED to permit another user the ability to SU to the account?
4. What account restriction options [From Question #1] would prevent or affect the use of CRON and AT jobs created and executed by the non-privileged user account?
2. Can a non-privileged user account be denied remote login, but still allowed local login via a local console?
3. Can a non-privileged user account be denied both remote and local login, but allow the account to remain UNLOCKED to permit another user the ability to SU to the account?
4. What account restriction options [From Question #1] would prevent or affect the use of CRON and AT jobs created and executed by the non-privileged user account?
4 REPLIES 4
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-22-2010 09:26 AM
тАО01-22-2010 09:26 AM
Re: Account restrictions question(s):
1. What options are available to restrict the use of a non-privileged user account?
I'm not sure what the above means regarding "restrict the use"? Limit times, locations, actions, all of the above, none?
2. Can a non-privileged user account be denied remote login, but still allowed local login via a local console?
I know of nothing "built-in" that will do this (which doesn't mean much), but you could do something the the profiles to examine where the login is coming from and react accordingly.
3. Can a non-privileged user account be denied both remote and local login, but allow the account to remain UNLOCKED to permit another user the ability to SU to the account?
Yes. Other options might include sudo, powerbroker, role based access controls, or ????
4. What account restriction options [From Question #1] would prevent or affect the use of CRON and AT jobs created and executed by the non-privileged user account?
see the man pages for "cron" and "at", "cron.deny", "at.deny", "cron.allow" and "at.allow"
Perhaps description of what you hope to accomplish might be in order
I'm not sure what the above means regarding "restrict the use"? Limit times, locations, actions, all of the above, none?
2. Can a non-privileged user account be denied remote login, but still allowed local login via a local console?
I know of nothing "built-in" that will do this (which doesn't mean much), but you could do something the the profiles to examine where the login is coming from and react accordingly.
3. Can a non-privileged user account be denied both remote and local login, but allow the account to remain UNLOCKED to permit another user the ability to SU to the account?
Yes. Other options might include sudo, powerbroker, role based access controls, or ????
4. What account restriction options [From Question #1] would prevent or affect the use of CRON and AT jobs created and executed by the non-privileged user account?
see the man pages for "cron" and "at", "cron.deny", "at.deny", "cron.allow" and "at.allow"
Perhaps description of what you hope to accomplish might be in order
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-26-2010 09:14 AM
тАО01-26-2010 09:14 AM
Re: Account restrictions question(s):
1. What options are available to restrict the use of a non-privileged user account?
I'm not sure what the above means regarding "restrict the use"? Limit times, locations, actions, all of the above, none?
Restrict the use means restrict the user from accessing, so "all of the above".
I'm not sure what the above means regarding "restrict the use"? Limit times, locations, actions, all of the above, none?
Restrict the use means restrict the user from accessing, so "all of the above".
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-26-2010 09:19 AM
тАО01-26-2010 09:19 AM
Re: Account restrictions question(s):
>>1. What options are available to restrict the use of a non-privileged user account?
-delete the user
-lock the user
-change the password to some unknown/invalid password
-change the default shell to an invalid shell
Perhaps it would help if you explained what the user should be able to do.
-delete the user
-lock the user
-change the password to some unknown/invalid password
-change the default shell to an invalid shell
Perhaps it would help if you explained what the user should be able to do.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-26-2010 01:54 PM
тАО01-26-2010 01:54 PM
Re: Account restrictions question(s):
> "Restrict the use means restrict the user from accessing, so "all of the above"."
>
OK, let's try again.....
using the same word your attempting to define, in this case "restrict", to define itself, doesn't help much...
should the "restricted" user every be able to login? should he/she only be able to do certain things?
I know YOU know what you mean, but it certainly isn't obvious from the "outside looking in".
You're probably going to need to eihter:
a) state, exactly, what limitations you wish to place on said user, -or-
b) enumerate what they should be able to do.....
>
OK, let's try again.....
using the same word your attempting to define, in this case "restrict", to define itself, doesn't help much...
should the "restricted" user every be able to login? should he/she only be able to do certain things?
I know YOU know what you mean, but it certainly isn't obvious from the "outside looking in".
You're probably going to need to eihter:
a) state, exactly, what limitations you wish to place on said user, -or-
b) enumerate what they should be able to do.....
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
News and Events
Support
© Copyright 2024 Hewlett Packard Enterprise Development LP