HPE Community
Operating System - HP-UX
1821051 Members
2488 Online
109631 Solutions
New Discussion юеВ

Duplicate audit IDs

 
SOLVED
Go to solution
Jeff_Traigle
Honored Contributor

тАО02-28-2006 02:29 AM

тАО02-28-2006 02:29 AM

Duplicate audit IDs

Haven't managed to find references to this through various searches. What are the implications of having duplicate audit IDs for users in a Trusted system configuration? Anything beyond problems if auditing is actually enabled? I've seen this happen at a couple of places because tcb files for users get copied from one system to another. If the user accounts aren't all created on one system initially, not too difficult for duplicates in the tcb files to propogate everywhere. Not aware of any problems they ever experienced because of it since auditing wasn't enabled, but seems like not such a great practice.
--
Jeff Traigle
0 Kudos
Reply
2 REPLIES 2
Peter Godron
Honored Contributor

тАО02-28-2006 02:57 AM

тАО02-28-2006 02:57 AM

Solution

Re: Duplicate audit IDs

Jeff,
I believe the OS would not allow you to add a new user with a duplicate audit id.

So I would think HP would want to prevent this situation for the reasons you mentioned.
I tend to create scripts to create users on a new machine, rather than copying the files.
Running the script should give you the warnings/errors.
Reply
David Nixon
Valued Contributor

тАО03-08-2006 03:36 AM

тАО03-08-2006 03:36 AM

Re: Duplicate audit IDs


I don't use Auditing and for new trusted
records specify the same "placeholder" audit ID - with the audit flag set to 0.
This policy has not given me any problems.

I noted, when converting to trusted systems, that audit IDs were generated starting with 0 and then taking the next lowest unused value. This implies that for a given UID the audit ID mapping may vary amongst systems.

Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.