- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- how to change root password by non-root user
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-03-2005 12:37 AM
03-03-2005 12:37 AM
We use HP-UX 11.11 (11i v1) on two rp4440-8 server and HP-UX 11.00 on three L2000 servers.
Now need a non-root user who can only change the password of user root.
We also use eTrust Acces Control on the unix servers. v5.1 SP2 on the L2000 en v5.3 on the rp4440-8 servers.
On the L2000 servers I can change the password of root by defining a "sesudo" command and give the non-root user the proper autorisation.
This works fine.
On the rp4440-8 servers (HP-UX 11.11) I defined all the same but It don't work.
When I look into a trace of eTrust there is no error message what gives me the idea that on OS level this action is blocked.
When I enter on a console using a non-root user "passwd root" then no problem but from a non-console I get the message "You are not allowed to change root's password".
HELP
Regard,
Co
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-03-2005 12:46 AM
03-03-2005 12:46 AM
Re: how to change root password by non-root user
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-03-2005 12:51 AM
03-03-2005 12:51 AM
Re: how to change root password by non-root user
Thanks for the quick response.
Yes, the file exists:
"console"
Is there something chenaged sinds HP-UX 11.0?
RgRds Co
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-03-2005 01:21 AM
03-03-2005 01:21 AM
SolutionI don't know eTrust - best bet would be to submit a call to them.
Rgds...Geoff
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-03-2005 01:29 AM
03-03-2005 01:29 AM
Re: how to change root password by non-root user
Anil
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-03-2005 01:30 AM
03-03-2005 01:30 AM
Re: how to change root password by non-root user
If I recall the file "/etc/securetty" blocks the login of "root" on a non-console.
This is oke.
But on HP-UX 11.0 a special user wich can only change the password of root can login using telnet.
On HP-UX 11.11 this don't work?
CA-eTrust is a security application used to restict on OS, file and user level per user and / or group. CA-eTrust does allow to change password of root becose I autorised a non-root user to do but CA-eTrust is yust a extra layer over the OS-security layer.
So, the OS-layer stops the change of root password on a non-console, it looks like to me and not CA-eTrust.
RgRds Co
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-03-2005 03:29 PM
03-03-2005 03:29 PM
Re: how to change root password by non-root user
Yep, with eTrust, you can change password all of the user if you have eTrust's admin right even stop root user when try to connect to your system...
I have never done with rp4440 but I have tried with rp5470, it works....
Without eTrust, you can not change the root password unless you are root user or any user that define in root group!
Regard,
Hoang Chi Cong
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-24-2005 12:08 AM
08-24-2005 12:08 AM
Re: how to change root password by non-root user
Afterall we did get a fix from CA for ca-etrust v5.3 and now all works as we want it to work.
They changed the procedure in v5.3 for an other customer!
CA created a new token "RootPwAsOwn" and now we have a choice to allow a non-root to change the password of root.
Regards CvB.