HPE Community
Operating System - HP-UX
1833894 Members
1622 Online
110063 Solutions
New Discussion

proxy login Ids

 
sreekant sreekantham
Occasional Contributor

‎04-09-2002 09:08 PM

‎04-09-2002 09:08 PM

proxy login Ids

Say I have a user Id (master) through which I have read, write and execute permisssions on a specific directory.

I would like to create say 5 unique user Ids (peer1, peer2..) with their own passwords etc, but when these users log in, they should login as 'master' internally without their knowledge and have all the previleges that the master would have. Is this possible and if so, how can I achieve this. BR.
Never give up !
0 Kudos
Reply
6 REPLIES 6
Tom Geudens
Honored Contributor

‎04-09-2002 09:18 PM

‎04-09-2002 09:18 PM

Re: proxy login Ids

Hi,
This would depend on how exactly these users are going to log in. Say they are connecting from their Windows NT workstations and only need access to that specific directory, you could use Samba (and create a directory mapping) to accomplish this. If they actually need access to the Unix server (in order to execute commands) you could use a tool like sudo to accomplish it (http://www.courtesan.com/sudo/)

As you can see ... it all depends on what you are trying to accomplish.

Regards,
Tom Geudens
A life ? Cool ! Where can I download one of those from ?
0 Kudos
Reply
Michael Tully
Honored Contributor

‎04-09-2002 09:45 PM

‎04-09-2002 09:45 PM

Re: proxy login Ids

Hi,

You can get already compiled versions from the HP porting centre:

http://hpux.connect.org.uk/hppd/hpux/Sysadmin/sudo-1.6.2b1/
Anyone for a Mutiny ?
0 Kudos
Reply
Deepak Extross
Honored Contributor

‎04-09-2002 09:45 PM

‎04-09-2002 09:45 PM

Re: proxy login Ids

How about using the concept of Unix groups to achieve this?
Define a group 'mygroup', and assign all these users 'master'. 'peer1', 'peer2', etc. to the group 'mygroup'.
Grant all permissions on the directory to the group (chmod g+w,g+r,g+x).
This way, all the users will have full access to the directory, irrespective of their login-id.
0 Kudos
Reply
sreekant sreekantham
Occasional Contributor

‎04-09-2002 10:13 PM

‎04-09-2002 10:13 PM

Re: proxy login Ids

I forgot to add an important aspect in this. There is a restriction on the master user, if this user is logged in, there cannot be another session with the same login. The reason behind this requirement is, Master user has access to specific functions which update some important config files.

I would like the users peer1,peer2 do the same but without realising that they are updating the config files.
Never give up !
0 Kudos
Reply
Tom Geudens
Honored Contributor

‎04-09-2002 11:23 PM

‎04-09-2002 11:23 PM

Re: proxy login Ids

Hi,
Ok, so your users need to execute commands on the server as user "master". I would definitely go for sudo then. You can even limit WHICH commands they can execute as "master".
Your second requirement is tricky though. I know of no way to limit the number of people that login as a specific user (yes, I know one ... make sure that only one person has the password :-). But maybe someone else does ...

Hope this helps,
Tom Geudens
A life ? Cool ! Where can I download one of those from ?
0 Kudos
Reply
Deepak Extross
Honored Contributor

‎04-10-2002 01:18 AM

‎04-10-2002 01:18 AM

Re: proxy login Ids

Regarding your first requirement, you could either use sudo or set the user-id bit on in the executables which would do the work.
chmod u+s

Regarding your second requirement, you could add a small check in the .profile of the peers to check if master is logged in.

HTH
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.