HPE Community
Operating System - HP-UX
1752452 Members
6100 Online
108788 Solutions
New Discussion юеВ

Re: Sorry, user test1 is not allowed to execute "/usr/lbin/getprpw -m spwchg test1" as root on hostname

 
ladoo_1
Frequent Advisor

тАО06-25-2008 08:49 AM

тАО06-25-2008 08:49 AM

Sorry, user test1 is not allowed to execute "/usr/lbin/getprpw -m spwchg test1" as root on hostname

I have this line in the /etc/sudoers file ..
Host_Alias SER=server1,server2

ALL SER=/usr/lbin/getprpw ALL

Please let me know what else i need to do ??
thanks
0 Kudos
Reply
11 REPLIES 11
Steven E. Protter
Exalted Contributor

тАО06-25-2008 09:30 AM

тАО06-25-2008 09:30 AM

Re: Sorry, user test1 is not allowed to execute "/usr/lbin/getprpw -m spwchg test1" as root on hostname

Shalom,

I don't see the users defined in your sudoers file.

Example:

ycallen MAIN=NOPASSWD:SNMP

Cmnd_Alias SNMP=/usr/local/emanate/linux.bin/snmpdm,/etc/rc.d/init.d/snmpm,/etc/init.d/snmpm

This gives user ycallen (who no longer works here) the rights to run the progams listed in the command alias as root.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
ladoo_1
Frequent Advisor

тАО06-25-2008 09:34 AM

тАО06-25-2008 09:34 AM

Re: Sorry, user test1 is not allowed to execute "/usr/lbin/getprpw -m spwchg test1" as root on hostname

I want all the users on the Host_Alias SER=server1 , server2

to run that command ...

ALL SER=/usr/lbin/getprpw ALL


ALL = All users

SER = host list

command /usr/lbin/getprpw

I amy have the syntax incorect ??
0 Kudos
Reply
Ivan Krastev
Honored Contributor

тАО06-25-2008 09:57 AM

тАО06-25-2008 09:57 AM

Re: Sorry, user test1 is not allowed to execute "/usr/lbin/getprpw -m spwchg test1" as root on hostname

Try:

ALL SER=/usr/lbin/getprpw

regards,
ivan
0 Kudos
Reply
ladoo_1
Frequent Advisor

тАО06-25-2008 10:02 AM

тАО06-25-2008 10:02 AM

Re: Sorry, user test1 is not allowed to execute "/usr/lbin/getprpw -m spwchg test1" as root on hostname

I still get the error ...
0 Kudos
Reply
ladoo_1
Frequent Advisor

тАО06-25-2008 01:12 PM

тАО06-25-2008 01:12 PM

Re: Sorry, user test1 is not allowed to execute "/usr/lbin/getprpw -m spwchg test1" as root on hostname

any one ...
0 Kudos
Reply
Kenan Erdey
Honored Contributor

тАО06-25-2008 01:38 PM

тАО06-25-2008 01:38 PM

Re: Sorry, user test1 is not allowed to execute "/usr/lbin/getprpw -m spwchg test1" as root on hostname

Hi,

can you post sudo -l output when you are test1 ?
Computers have lots of memory but no imagination
0 Kudos
Reply
ladoo_1
Frequent Advisor

тАО06-25-2008 01:53 PM

тАО06-25-2008 01:53 PM

Re: Sorry, user test1 is not allowed to execute "/usr/lbin/getprpw -m spwchg test1" as root on hostname

ALL SER=/usr/lbin/getprpw ALL


if you look at the above line i have ALL in the first field that means every one on that server ...
0 Kudos
Reply
ladoo_1
Frequent Advisor

тАО06-25-2008 01:54 PM

тАО06-25-2008 01:54 PM

Re: Sorry, user test1 is not allowed to execute "/usr/lbin/getprpw -m spwchg test1" as root on hostname

SER= Host_Alias where the host list is ..

Host_Alias SER= server1, server2 ....
0 Kudos
Reply
ladoo_1
Frequent Advisor

тАО06-25-2008 02:54 PM

тАО06-25-2008 02:54 PM

Re: Sorry, user test1 is not allowed to execute "/usr/lbin/getprpw -m spwchg test1" as root on hostname

the problem is here But i don't know how to fix it ...as i don't no scripting ..

# If user is root, then sudo is not needed.
# Use getprpw to get the date the password was changed. Get the Month, day and year
# it was changed.

if [[ "${USER}" = "root" ]] ; then
/usr/lbin/getprpw -m spwchg ${USER} | awk '{print $2, $3, $5}' | read CHMONTH CHDAY CHYEAR
else
/usr/local/bin/sudo /usr/lbin/getprpw -m spwchg ${USER} | awk '{print $2, $3, $5}' | read CHMONTH CHDAY CHYEAR
fi
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.