- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Sam customization or restricting sam user access
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-10-2009 01:12 PM
тАО11-10-2009 01:12 PM
Sam customization or restricting sam user access
Altertively I would like more granular control over the "Accounts for Users and Groups" menu, to restrict what can be done in there.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-10-2009 01:29 PM
тАО11-10-2009 01:29 PM
Re: Sam customization or restricting sam user access
you can use the following command
# sam -r
with this, you can provide the restricted access of SAM areas to the specific users.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-10-2009 01:44 PM
тАО11-10-2009 01:44 PM
Re: Sam customization or restricting sam user access
this is a great way not to have to write menus and a secure way to run scripts as root ( assuming you write secure scripts ).
In a past life we used it mainly to delegate user password resets to our Help Desk.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-10-2009 04:16 PM
тАО11-10-2009 04:16 PM
Re: Sam customization or restricting sam user access
May want to consider sudo or RBAC
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-11-2009 08:41 PM
тАО11-11-2009 08:41 PM
Re: Sam customization or restricting sam user access
We have RX series server with 11.31, and sam is also present.
thnx...farhan
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-12-2009 06:14 AM
тАО11-12-2009 06:14 AM
Re: Sam customization or restricting sam user access
"You can also create custom groups and actions that can execute your scripts.
this is a great way not to have to write menus and a secure way to run scripts as root ( assuming you write secure scripts ).
In a past life we used it mainly to delegate user password resets to our Help Desk"
Were you able to get these scripts to accept STDIN? My tests of this using the shell script read statement does not work when adding applications in the SMH/Settings/Add Custom menu. The script runs and gives output, but does not accept STDIN parameters or prompts from the read syntax. ($1, etc)
thanks
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-17-2009 06:56 PM
тАО11-17-2009 06:56 PM
Re: Sam customization or restricting sam user access
It seems the way to launch an application that may require input is to specify a run command of the form
/usr/bin/X11/dtterm -e commandline
i.e. spawn a terminal at the desktop (which of course must be running something like Reflection/X) and run the command in that environment. The command line argument to -e is unquoted, i.e. the first word is the command, anything after that is an argument thereto. Quoting appears to apply, i.e.
/usr/bin/X11/dtterm -e command 1 "2 3" 4
will pass the 2d argument as the string "2 3" and the 3d argument as "4".
As is the case with utilities like cron and su, the environment is a basic one; to get the full login environment, I found this did the trick:
/usr/bin/X11/dtterm -e /usr/bin/sh -c '. /etc/profile; ~/.profile; command'
Frankly I'd have thought there was still a place for _restricted_ SAM in the v3 distro, that part of it was quite a neat GUI/TUI wrapper for su.