HPE Community
Operating System - HP-UX
1819734 Members
2954 Online
109606 Solutions
New Discussion юеВ

Re: Is root the only user to create users or change passwords of others

 
SOLVED
Go to solution
yyghp
Super Advisor

тАО05-09-2005 10:44 AM

тАО05-09-2005 10:44 AM

Is root the only user to create users or change passwords of others

Is it possible that I can have a user other than "root", which will be used by another guy, who can help me to manage users, such as create another users, change their password, etc... ?

Thanks !
0 Kudos
Reply
9 REPLIES 9
Patrick Wallek
Honored Contributor

тАО05-09-2005 10:51 AM

тАО05-09-2005 10:51 AM

Re: Is root the only user to create users or change passwords of others

By default only root can do this.

You could set up sudo so that someone else could perform these functions.

You could also set up restricted sam and set up the other user to be able to do this.

To configure restricted sam invoke

# sam -r

0 Kudos
Reply
Joseph Loo
Honored Contributor

тАО05-09-2005 10:53 AM

тАО05-09-2005 10:53 AM

Solution

Re: Is root the only user to create users or change passwords of others

hi,

only user who can change password is root. unless u like to use sudo which is available:

http://hpux.connect.org.uk/hppd/hpux/Sysadmin/sudo-1.6.8p7/

another way would be restricted sam (sam -r) which assign certain rights to user.

regards.
what you do not see does not mean you should not believe
Reply
Dmitry G. Spitsyn
Trusted Contributor

тАО05-25-2005 07:52 PM

тАО05-25-2005 07:52 PM

Re: Is root the only user to create users or change passwords of others

To be acurate, any user with UID=0 can do that, even if his username is not root, but wanted ;-)

BR,
Dmitry
0 Kudos
Reply
Etienne Roseau
Frequent Advisor

тАО05-25-2005 09:09 PM

тАО05-25-2005 09:09 PM

Re: Is root the only user to create users or change passwords of others

hi
only way is to give the user restricted root rights (with SAM > accounts and user)
HTH
E.
0 Kudos
Reply
Stf
Esteemed Contributor

тАО05-25-2005 09:26 PM

тАО05-25-2005 09:26 PM

Re: Is root the only user to create users or change passwords of others

Hello

I think the best way is to create a user with UID=0, it gives the user the same rights as root...

Stf ;-)
0 Kudos
Reply
Cem Tugrul
Esteemed Contributor

тАО05-25-2005 11:09 PM

тАО05-25-2005 11:09 PM

Re: Is root the only user to create users or change passwords of others

Hello,

i am also agree with creating user with uid=0
rights with root but the Q is how is it meaningful?...so sudo can be solution.

Good Luck,
Our greatest duty in this life is to help others. And please, if you can't
0 Kudos
Reply
Rick Garland
Honored Contributor

тАО05-26-2005 12:56 AM

тАО05-26-2005 12:56 AM

Re: Is root the only user to create users or change passwords of others

Any UID of 0 can do. But advise is no more than 1 UID=0, this being the root account.

You can setup some restricted SAM. Better yet, use sudo and you will be able to have better logging as to who did what and when and from where.

Can make a parsing script against the sudoi log file and lots of info can be made available.
0 Kudos
Reply
DCE
Honored Contributor

тАО05-26-2005 12:56 AM

тАО05-26-2005 12:56 AM

Re: Is root the only user to create users or change passwords of others

Giving a user a UID of 0 is not a very good idea from a security perspective. That user will not only be able to manage id's, but they will have, by definition, full root authority on the system. The best way is the restricted SAM. It is extremely easy and fast to set up, and it restricts the root authority of the person managing the id's.
Dave
0 Kudos
Reply
Etienne Roseau
Frequent Advisor

тАО05-26-2005 01:01 AM

тАО05-26-2005 01:01 AM

Re: Is root the only user to create users or change passwords of others

give the root password to everybody will be easier...hope you have a recovery tape....
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.