Scribd Logo
Загрузить

Добро пожаловать в Scribd!

  • Unix User Administration

    Загружено:

    Alemseged Habtamu
    15 просмотров5 страниц
    There are three types of user accounts on Unix systems: root, system, and user accounts. The root account has full access and control over the system. System accounts are for system processes and functions. User accounts provide access for general users with limited access to files. Unix uses group accounts to logically group user accounts. The main files for managing users are /etc/passwd, /etc/shadow, /etc/group, and /etc/gshadow. Commands like useradd, usermod, userdel, groupadd, groupmod, and groupdel are used to create, modify, and delete user and group accounts.

    Исходное описание:

    unix - user administration

    Авторское право

    © © All Rights Reserved

    Доступные форматы

    PDF, TXT или читайте онлайн в Scribd

    Этот документ был вам полезен?

    Это неприемлемый материал?

    Пожаловаться на этот документ
    There are three types of user accounts on Unix systems: root, system, and user accounts. The root account has full access and control over the system. System accounts are for system processes and functions. User accounts provide access for general users with limited access to files. Unix uses group accounts to logically group user accounts. The main files for managing users are /etc/passwd, /etc/shadow, /etc/group, and /etc/gshadow. Commands like useradd, usermod, userdel, groupadd, groupmod, and groupdel are used to create, modify, and delete user and group accounts.

    Авторское право:

    © All Rights Reserved
    Скачайте в формате PDF, TXT или читайте онлайн в Scribd
    Отметить как неприемлемый контент
    15 просмотров5 страниц

    Unix User Administration

    Загружено:

    Alemseged Habtamu
    There are three types of user accounts on Unix systems: root, system, and user accounts. The root account has full access and control over the system. System accounts are for system processes and functions. User accounts provide access for general users with limited access to files. Unix uses group accounts to logically group user accounts. The main files for managing users are /etc/passwd, /etc/shadow, /etc/group, and /etc/gshadow. Commands like useradd, usermod, userdel, groupadd, groupmod, and groupdel are used to create, modify, and delete user and group accounts.

    Авторское право:

    © All Rights Reserved
    Скачайте в формате PDF, TXT или читайте онлайн в Scribd
    Отметить как неприемлемый контент
    из 5

    4/14/2016 UnixUserAdministration

    UnixUserAdministration
    Advertisements

    Thankyouforhelpingusmeasurethe
    Internet.

    PreviousPage NextPage

    TherearethreetypesofaccountsonaUnixsystem

    RootaccountThisisalsocalledsuperuserandwouldhavecompleteand
    unfetteredcontrolofthesystem.Asuperusercanrunanycommandswithout
    anyrestriction.Thisusershouldbeassumedasasystemadministrator.

    SystemaccountsSystemaccountsarethoseneededfortheoperationof
    systemspecific components for example mail accounts and the sshd
    accounts. These accounts are usually needed for some specific function on
    your system, and any modifications to them could adversely affect the
    system.

    UseraccountsUseraccountsprovideinteractiveaccesstothesystemfor
    users and groups of users. General users are typically assigned to these
    accounts and usually have limited access to critical system files and
    directories.

    Unix supports a concept of Group Account which logically groups a number of


    accounts. Every account would be a part of any group account. Unix groups plays
    importantroleinhandlingfilepermissionsandprocessmanagement.

    ManagingUsersandGroups
    Therearethreemainuseradministrationfiles

    /etc/passwd: Keeps user account and password information. This file


    holdsthemajorityofinformationaboutaccountsontheUnixsystem.
    http://www.tutorialspoint.com/unix/unixuseradministration.htm 1/6
    4/14/2016 UnixUserAdministration

    /etc/shadow: Holds the encrypted password of the corresponding


    account.Notallthesystemsupportthisfile.

    /etc/group:Thisfilecontainsthegroupinformationforeachaccount.

    /etc/gshadow:Thisfilecontainssecuregroupaccountinformation.

    Checkalltheabovefilesusingcatcommand.

    Following are commands available on the majority of Unix systems to create and
    manageaccountsandgroups

    Command Description

    useradd Addsaccountstothesystem.

    usermod Modifiesaccountattributes.

    userdel Deletesaccountsfromthesystem.

    groupadd Addsgroupstothesystem.

    groupmod Modifiesgroupattributes.

    groupdel Removesgroupsfromthesystem.

    You can use Manpage Help to check complete syntax for each command
    mentionedhere.

    CreateaGroup
    You would need to create groups before creating any account otherwise you would
    have to use existing groups at your system. You would have all the groups listed in
    /etc/groupsfile.

    All the default groups would be system account specific groups and it is not
    recommendedtousethemforordinaryaccounts.Sofollowingisthesyntaxtocreate
    anewgroupaccount

    groupadd[ggid[o]][r][f]groupname

    Hereisthedetailoftheparameters:

    http://www.tutorialspoint.com/unix/unixuseradministration.htm 2/6
    4/14/2016 UnixUserAdministration

    Option Description

    gGID Thenumericalvalueofthegroup'sID.

    o ThisoptionpermitstoaddgroupwithnonuniqueGID

    r Thisflaginstructsgroupaddtoaddasystemaccount

    f Thisoptioncausestojustexitwithsuccessstatusifthespecified
    groupalreadyexists.Withg,ifspecifiedGIDalreadyexists,
    other(unique)GIDischosen

    groupname Actaulgroupnametobecreated.

    Ifyoudonotspecifyanyparameterthensystemwouldusedefaultvalues.

    Following example would create developers group with default values, which is very
    muchacceptableformostoftheadministrators.

    $groupadddevelopers

    ModifyaGroup
    Tomodifyagroup,usethegroupmodsyntax

    $groupmodnnew_modified_group_nameold_group_name

    Tochangethedevelopers_2groupnametodeveloper,type

    $groupmodndeveloperdeveloper_2

    HereishowyouwouldchangethefinancialGIDto545

    $groupmodg545developer

    DeleteaGroup:
    To delete an existing group, all you need are the groupdel command and the group
    name.Todeletethefinancialgroup,thecommandis

    $groupdeldeveloper

    This removes only the group, not any files associated with that group. The files are
    stillaccessiblebytheirowners.

    http://www.tutorialspoint.com/unix/unixuseradministration.htm 3/6
    4/14/2016 UnixUserAdministration

    CreateanAccount
    LetusseehowtocreateanewaccountonyourUnixsystem.Followingisthesyntax
    tocreateauser'saccount

    useradddhomedirggroupnamemsshelluuseridaccountname

    Hereisthedetailoftheparameters

    Option Description

    dhomedir Specifieshomedirectoryfortheaccount.

    ggroupname Specifiesagroupaccountforthisaccount.

    m Createsthehomedirectoryifitdoesn'texist.

    sshell Specifiesthedefaultshellforthisaccount.

    uuserid Youcanspecifyauseridforthisaccount.

    accountname Actualaccountnametobecreated

    If you do not specify any parameter then system would use default values. The
    useradd command modifies the /etc/passwd, /etc/shadow, and /etc/group files and
    createsahomedirectory.

    Following is the example which would create an account mcmohd setting its home
    directoryto/home/mcmohdandgroupasdevelopers.ThisuserwouldhaveKornShell
    assignedtoit.

    $useraddd/home/mcmohdgdeveloperss/bin/kshmcmohd

    Before issuing above command, make sure you already have developers group
    createdusinggroupaddcommand.

    Onceanaccountiscreatedyoucansetitspasswordusingthepasswdcommandas
    follows

    $passwdmcmohd20
    Changingpasswordforusermcmohd20.
    NewUNIXpassword:
    RetypenewUNIXpassword:
    passwd:allauthenticationtokensupdatedsuccessfully.

    http://www.tutorialspoint.com/unix/unixuseradministration.htm 4/6
    4/14/2016 UnixUserAdministration

    When you type passwd accountname, it gives you option to change the password
    provided you are super user otherwise you would be able to change just your
    passwordusingthesamecommandbutwithoutspecifyingyouraccountname.

    ModifyanAccount
    The usermod command enables you to make changes to an existing account from
    thecommandline.Itusesthesameargumentsastheuseraddcommand,plusthel
    argument,whichallowsyoutochangetheaccountname.

    For example, to change the account name mcmohd to mcmohd20 and to change
    homedirectoryaccordingly,youwouldneedtoissuefollowingcommand

    $usermodd/home/mcmohd20mlmcmohdmcmohd20

    DeleteanAccount

    The userdel command can be used to delete an existing user. This is a very
    dangerouscommandifnotusedwithcaution.

    Thereisonlyoneargumentoroptionavailableforthecommand:.r,forremovingthe
    account'shomedirectoryandmailfile.

    For example, to remove account mcmohd20, you would need to issue following
    command

    $userdelrmcmohd20

    Ifyouwanttokeepherhomedirectoryforbackuppurposes,omittheroption.You
    canremovethehomedirectoryasneededatalatertime.

    PreviousPage NextPage

    Advertisements

    http://www.tutorialspoint.com/unix/unixuseradministration.htm 5/6

    Вам также может понравиться