- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: trusted system
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-24-2009 12:07 AM
тАО10-24-2009 12:07 AM
I have rp3440 server and i installed hp-ux 11.11
how to trust the system
any one help me very urgent
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-24-2009 12:36 AM
тАО10-24-2009 12:36 AM
SolutionThe preferred method of converting a system to Trusted Systems is by using SAM. The resulting files and directories that manage the Trusted Computing Base (TCB) are sensitive to inappropriate editing (don't mess it up) leading to a system which may lock out every user, including root. Such a situation would probably need the use of the Recovery Media, the Recovery Shell, and some clever backing out of the TCB configuration.
To enable Trusted Systems from within SAM, you would navigate from the Main Menu - Auditing and Security and then to any of the four sub-menus titled "Audited Events," "Audited System Calls," "Audited Users," or "System Security Policies."
http://docs.hp.com/en/B2355-90950/ch08s08.html
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-24-2009 12:52 AM
тАО10-24-2009 12:52 AM
Re: trusted system
Using command prompt to convert into trusted mode :
# cd /usr/lbin
# ./tsconvert
To verify trusted sytem:
# cd /usr/lbin ; ./getprpw username
More info: HP-UX Trusted System reference: http://docs.hp.com/en/B2355-90121/ch01s02.html
Hth,
Raj.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-24-2009 01:45 AM
тАО10-24-2009 01:45 AM
Re: trusted system
users with passwd more than eight characters will not be able to login after conversion unless they enter upto eight characters only.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-24-2009 01:47 AM
тАО10-24-2009 01:47 AM
Re: trusted system
run /usr/lbin/tsconvert - c instead of /etc/tsconvert -c
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-24-2009 03:11 PM
тАО10-24-2009 03:11 PM
Re: trusted system
The reason that SAM is preferred is that this command will indeed convert to Trusted but expires *ALL* passwords. If you use this method, you must follow the conversion with:
/usr/lbin/modprpw -V
NOTE: That is a capital V not lowercase v.
Bill Hassell, sysadmin
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-25-2009 08:15 PM
тАО10-25-2009 08:15 PM
Re: trusted system
If iam suppose convert to trustmode my root password is disabled?
What can I do?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-25-2009 08:31 PM
тАО10-25-2009 08:31 PM
Re: trusted system
Logon from the console.
Also, have multiple windows to the machine and use one to test while staying on root with another.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-25-2009 08:35 PM
тАО10-25-2009 08:35 PM
Re: trusted system
What can I do?<<<
Looks like you assume ? I am right ?
If yes, you need boot the Server single user mode
Interput ISL> hpux -is
> bo pri
# /usr/lbin/modprpw -k root (enable root account)
or
# cd /tcb/files/auth/r
# vi root
pwd "filed" erase
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-25-2009 08:44 PM
тАО10-25-2009 08:44 PM
Re: trusted system
>if root password is disabled?
What can I do?
keep few root session open :
And you can alaways enable the root password using #/usr/lbin/modprpw -k root