HPE Community
Operating System - HP-UX
1833728 Members
2826 Online
110063 Solutions
New Discussion

Re: Restrict SAM

 
SOLVED
Go to solution
LucianoCarvalho
Respected Contributor

‎06-04-2003 07:19 AM

‎06-04-2003 07:19 AM

Restrict SAM

Hi guys!
I'm trying to create a restrict sam for a user but when a I log in with that user and try to enter sam I receive the folowing error:
you must have superuser privilege(root) to
enter SAM

Does anyone have any clue?
The file /etc/sam/custom/user.cf has been created.

thanks in advance
0 Kudos
Reply
14 REPLIES 14
Pete Randall
Outstanding Contributor

‎06-04-2003 07:25 AM

‎06-04-2003 07:25 AM

Re: Restrict SAM

While logged in as root, run "sam -r" to configure the restricted SAM session for the user. Then log in as the user and run sam.


Pete

Pete
0 Kudos
Reply
LucianoCarvalho
Respected Contributor

‎06-04-2003 07:27 AM

‎06-04-2003 07:27 AM

Re: Restrict SAM

Thanks Pete, but I did that and the error is still happening.
0 Kudos
Reply
John Meissner
Esteemed Contributor

‎06-04-2003 07:28 AM

‎06-04-2003 07:28 AM

Re: Restrict SAM

We go one step further...

1-loging as root
2-type "sam -r" to setup restricted sam
3-set the users start up program to /usr/sbin/sam

this way he can only use sam on the system.
All paths lead to destiny
0 Kudos
Reply
S.K. Chan
Honored Contributor

‎06-04-2003 07:33 AM

‎06-04-2003 07:33 AM

Re: Restrict SAM

You should have 3 files created if this is setup correctly ..
/etc/sam/custom/user_name.cf
/etc/sam/custom/user_name.tp
/etc/sam/sam_custom.cu
Are they all there ?
0 Kudos
Reply
LucianoCarvalho
Respected Contributor

‎06-04-2003 07:42 AM

‎06-04-2003 07:42 AM

Re: Restrict SAM

Hi Chan.
I just have the following files:
/etc/sam/custom/user.cf
/etc/sam/custom/default.tp

this same configuration is working on another machine.
It is a hp-ux 11.00.
0 Kudos
Reply
Pete Randall
Outstanding Contributor

‎06-04-2003 07:42 AM

‎06-04-2003 07:42 AM

Re: Restrict SAM

Luciano,

The only files I see are the user.cf file and a "default.tp" file. It works for me on 11.11 that's not terribly up to date with patches (PHCO_24118 is the latest SAM patch I have). What OS and patch level are you dealing with?


Pete

Pete
0 Kudos
Reply
Helen French
Honored Contributor

‎06-04-2003 07:45 AM

‎06-04-2003 07:45 AM

Re: Restrict SAM

Is this happens only when you invoke restricted SAM? Can you run normal SAM session? Are root or root equivalent?
Life is a promise, fulfill it!
0 Kudos
Reply
LucianoCarvalho
Respected Contributor

‎06-04-2003 07:51 AM

‎06-04-2003 07:51 AM

Re: Restrict SAM

It happens when I'm logged with a ordinary user and execute /usr/sbin/sam. The same message apears when there is a restrict sam configured to the user and when there is no restrict sam configured.
0 Kudos
Reply
LucianoCarvalho
Respected Contributor

‎06-04-2003 07:56 AM

‎06-04-2003 07:56 AM

Re: Restrict SAM

I have patch PHCO_23876 installed.
0 Kudos
Reply
Helen French
Honored Contributor

‎06-04-2003 07:56 AM

‎06-04-2003 07:56 AM

Re: Restrict SAM

I would check this:
1) Log in as root
2) Execute sam -r
3) On the screen, check if the user "Has SAM privileges" marked as "yes" or "no"
4) If marked "no", then alloacate proper privileges.
5) Save and exit.
6) Now log in as user and try running SAM.
Life is a promise, fulfill it!
0 Kudos
Reply
S.K. Chan
Honored Contributor

‎06-04-2003 08:05 AM

‎06-04-2003 08:05 AM

Re: Restrict SAM

This is odd .. can you do this .. as root run ..(assuming skchan is the restricted user setup in SAM)
# sam -f skchan
.. are you able to get the sam screen with ONLY the allowed operation ? What "sam -f" will do is it'll load the control file /etc/sam/custom/skchan.cf as if you're running SAM in restrictive mode setup for skchan.
0 Kudos
Reply
Geoff Wild
Honored Contributor

‎06-04-2003 08:27 AM

‎06-04-2003 08:27 AM

Solution

Re: Restrict SAM

what's in the user.cf file?

You may want to re-create Restricted SAM for this user - first, disable sam in sam -r for user, then delete the user.cf file - then re-setup this user....

Rgds...Geoff
Proverbs 3:5,6 Trust in the Lord with all your heart and lean not on your own understanding; in all your ways acknowledge him, and he will make all your paths straight.
Reply
Eugene Klaus
Frequent Advisor

‎06-21-2004 11:37 PM

‎06-21-2004 11:37 PM

Re: Restrict SAM

Hello Everyone!

I am experiencing the same problem on two machines with HPUX ver 11.00. I have followed the procedure for configuring a restricted sam user to the letter. [I have successfully done so on two other machines that are HPUX 10.20.] I have installed the patches through March 2004 and still experience the problem. If anyone has determined a solution please let me know!!

Thank you in advance.
I have promises to keep and miles to go before I sleep and miles to go before I sleep
0 Kudos
Reply
UnixGuy
Occasional Contributor

‎10-07-2006 06:46 AM

‎10-07-2006 06:46 AM

Re: Restrict SAM

Well,

All you need to do is run following command:
$/usr/sbin/sam

Now you can see the sam areas you have granted priviledges...

Regards
Deepak
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.