HPE Community
Operating System - HP-UX
1752794 Members
5568 Online
108789 Solutions
New Discussion юеВ

Security levels

 
SOLVED
Go to solution
Peston Foong
Advisor

тАО11-07-2000 01:27 AM

тАО11-07-2000 01:27 AM

Security levels

In HP-UX 11 64 bits, how many levels of security assessment. Is this only have two levels of authorization like root and operator. How do I assign the security level access to difference type of users.

To all experts. Thank you so much.

Regards
Peston.
0 Kudos
Reply
6 REPLIES 6
Dan Hetzel
Honored Contributor

тАО11-07-2000 02:57 AM

тАО11-07-2000 02:57 AM

Re: Security levels

Hi,

Not sure I fully understood your question.


If it was regarding file permissions:

As in all unix O/S, users are defined as being members of groups.
Every file has permission bits for the owner,
the group and others (the rest of the world)
see 'man chmod'

In addition to that, you can define a more
selective access to files using access control lists (type 'man acl' for details)

If your question was more about the security level, a search for 'trusted system' will give you a whole bunch of info.


Dan
Everybody knows at least one thing worth sharing -- mailto:dan.hetzel@wildcroft.com
0 Kudos
Reply
Peston Foong
Advisor

тАО11-07-2000 05:48 PM

тАО11-07-2000 05:48 PM

Re: Security levels

Thank you for your replied. Here is what I mean about the standard security levels. For example, I want this guy to be my assistant and certain level of security files that his could not access like command shutdow, and certain command only administrator can do. How do I assign or create like some sort of assistant user profile to him.

Second, I would like to know that how does the security levels work in HP-UX or how many users access profile. I mean some systems have several levels of administration. And what are the authorization code that I should know in HP-UX 11. I just could not understand the HP-UX 11 64 bits the technical administrator, where can I find more about that.

Thanks a lot.

Peston.
0 Kudos
Reply
Patrick Wallek
Honored Contributor

тАО11-07-2000 06:16 PM

тАО11-07-2000 06:16 PM

Solution

Re: Security levels

I think part of what you want to do can be accomplished by using the 'sudo' application. sudo will allow you set up users so that they have access to certain commands and can run them as the root user without actually having the root password. You can get sudo here: http://hpux.cae.wisc.edu/hppd/hpux/Sysadmin/sudo-1.6.2b1/

As far as security leves go, there aren't really any administrative type users as far as I know. There are certain commands that you can and can't do depending on what group you are in, but I can't give you a definitive list.

I think sudo would be your best bet initially.
Reply
Chris Garman
Frequent Advisor

тАО11-09-2000 10:22 AM

тАО11-09-2000 10:22 AM

Re: Security levels

What I would use in your situation is restricted sam. It is now possible for you to assign standard user accounts access to each bit of sam. To configure this type sam -r. I think there is comprehensive on-line help, though it is straight-forward.

Chris
0 Kudos
Reply
Rick Garland
Honored Contributor

тАО11-09-2000 12:26 PM

тАО11-09-2000 12:26 PM

Re: Security levels

The use of sudo can be very beneficial. In addition to specifying what commands can be run by who, you have a log file that keeps track of who did what and when. If you have an unexpected shutdown (that is not a crash) and you know you didn't do it, you can view the sudo log and get the info.
0 Kudos
Reply
Peston Foong
Advisor

тАО11-12-2000 10:37 PM

тАО11-12-2000 10:37 PM

Re: Security levels

I just would like to ask that simply download the SU patches, is it will give an endanger to the system?

Thank a lot to all experts.

0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.