Operating System - HP-UX
1833187 Members
2866 Online
110051 Solutions
New Discussion

Re: Deny changing root password in Restricted SAM

 
Restricted SAM
Occasional Contributor

Deny changing root password in Restricted SAM

How do you give your helpdesk rights though Restricted SAM on HP-UX 11.11 to change user passwords, but prevent them from changing root or other system accounts?
2 REPLIES 2
A. Clay Stephenson
Acclaimed Contributor

Re: Deny changing root password in Restricted SAM

How do I do it with SAM restricted or not? I don't. I write my own password manipulation tools.
If it ain't broke, I can fix that.
Marlou Everson
Trusted Contributor

Re: Deny changing root password in Restricted SAM

Set up a custom area in Restricted SAM to run a script in /usr/sam/lbin that does something along the lines of

/bin/echo 'Enter username: ' \
&& read input && echo $input | grep -vq -e root -e adm -e bin \
&& /bin/passwd $input && echo "Changed" || echo "NOT changed"

Modify the grep appropriately and test it.

Marlou