Re: Is it decnet problem or Thruway problem ?

• Previous message: David Froble: "Re: Touch Screen Voting systems"
• In reply to: Keith Cayemberg: "Re: Is it decnet problem or Thruway problem ?"
• Next in thread: Martin Vorlaender: "Re: Is it decnet problem or Thruway problem ?"
• Reply: Martin Vorlaender: "Re: Is it decnet problem or Thruway problem ?"
• Reply: David M Smith: "Re: Is it decnet problem or Thruway problem ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: 2 Aug 2004 20:01:43 -0700

Keith Cayemberg <keith.cayemberg@arcor.de> wrote in message news:<410e1947$0$7322$9b4e6d93@newsread2.arcor-online.net>...
> Jignesh Vyas 'Jigs' wrote:
> . . .
> [snip]
> . . .
> > Thanks a lot. /Default has solved the issue but is there any why where
> > i can simulate the other user's user id from system account. this will
> > enable me to simulate the other user id's less priv. user environment
> > to check the scripts without troubling them.
> >
> > -Jigs
>
> You can use the Authorize utility to COPY the user, but changing only
> the USERNAME and the PASSWORD. You will then have a username and
> password to an account with the same UIC, Quotas, Privileges,
> Identifiers, Default Directory, and Login procedures as the user having
> problems. However, you must watch for the possibility that the login
> procedures or the application are checking the USERNAME. In that case
> you need to change the login procedure or register the new USERNAME with
> the application as well.
> You should normally then be able to recreate the conditions which lead
> to the user's problem and analyse it, without needing or changing the
> user's password.
>
> EXAMPLE (creation):
>
> $ set default sys$system
> $ show default
> SYS$SYSROOT:[SYSEXE]
> = SYS$SYSROOT:[SYSEXE]
> = SYS$COMMON:[SYSEXE]
> $ r authorize
> UAF> show cayemberg /brief
> Owner Username UIC Account Privs Pri Directory
> CAYEMBERG CAYEMBERG [150,1] All 4 DKA0:[CAYEMBERG]
> UAF> copy cayemberg kmberg /password=fooey
> %UAF-I-PWDLESSMIN, new password is shorter than minimum password length
> %UAF-I-COPMSG, user record copied
> %UAF-W-SAMEUIC, new user record has the same UIC as the source record
> UAF> show kmberg /brief
> Owner Username UIC Account Privs Pri Directory
> CAYEMBERG KMBERG [150,1] All 4 DKA0:[CAYEMBERG]
>
> I have done this often, but also needed to register my test username
> with the application in my case.
>
> Be careful when deleting the test account, since the real user has the
> same UIC. You don't want to delete the original account as well. It is
> always best to first test such procedures on a dummy account, to be sure
> you have found and understood all issues before doing it on a production
> system. You may also need to check, and maybe follow or change, your
> companies security policies or procedures to perform such an account
> copy for testing puposes.
>
> EXAMPLE (removal):
>
> UAF> remove kmberg
> %UAF-I-REMMSG, record removed from system authorization file
> UAF> show kmberg
> %UAF-W-BADSPC, no user matches specification
>
> Cheers!
>
> Keith Cayemberg
> IBM Business Services - Hannover, Germany

Hi Keith,

Thanks for your information but my biggest problem is that I can't
touch SYSUAF at all, we have a seperate QA department for it and to do
any change in SYSUAF requires a long chain of approvals. :) I just
saw one application called "jump" in freeware which says

"JUMP allows a user to login exactly as another user without a
password.
It also allows a more restricted (non-exact) impersonation of
another
user."

-Jigs

• Previous message: David Froble: "Re: Touch Screen Voting systems"
• In reply to: Keith Cayemberg: "Re: Is it decnet problem or Thruway problem ?"
• Next in thread: Martin Vorlaender: "Re: Is it decnet problem or Thruway problem ?"
• Reply: Martin Vorlaender: "Re: Is it decnet problem or Thruway problem ?"
• Reply: David M Smith: "Re: Is it decnet problem or Thruway problem ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]