Re: login.cfg and ODM
- From: Bob Booth <booth@xxxxxxxx>
- Date: Tue, 11 Mar 2008 15:08:50 -0500
On Tue, Mar 11, 2008 at 06:23:02PM -0400, Little Guru wrote:
our user needs to change the temporary password that we have assigned.
he can do it when /usr/false is assigned to user's shell,
but when we lock the account no one can login, therefore there will be
no password change prompt.
When root sets a new users password, the ADMCHG flag gets set in
/etc/security/passwd for that user. The user can't proceed with login without
setting their password. If you require strict rules for password settings,
see the /etc/security/user file.
we are looking to have a user like nobody, who can run some
processes but no one can login with that user id.
I would look into 'sudo', or a restricted shell for the user. You don't
really want generic accounts issuing commands without being able to audit
who is logging in.
tried to set "user can login" and "user can login remotely" to false
but it does not let me change the temp password.
My main concern was changing login.cfg manually.
it there any command that will add additional shell to login.cfg.
You can change it by hand.
I read a document that was saying if we change any conf file
that is in ODM, server will have problem in future as the config
in ODM is different to actual conf file.
There is nothing in the ODM for these files.
hth,
bob
- References:
- Re: login.cfg and ODM
- From: Hunter, Mark
- Re: login.cfg and ODM
- From: Little Guru
- Re: login.cfg and ODM
- Prev by Date: Re: login.cfg and ODM
- Next by Date: Ranbir Singh is Out of the Office
- Previous by thread: Re: login.cfg and ODM
- Next by thread: Ranbir Singh is Out of the Office
- Index(es):
Relevant Pages
|
|
