| Blogs | Classifieds | Downloads | FlashChat | Gallery | Googlemap | Invite Friends | Links | Projects | Reviews | Wiki |
| |||||||||
 |  Operatings Systems for POWER Systems AIX for POWER Systems |
 rlogin for particular hostname | |
Welcome to the pSeries Tech Forums,
our free peer-based support site for administrators, engineers and architects working with IBM pSeries servers and software. You are currently viewing our site as a guest which gives you limited access to view most discussions, articles, tutorials and access our other free features. By joining our community you will be able to collaborate with administrators, engineers and architects charged with designing, delivering or maintaining IBM pSeries server environments. Founded by a recognized IBM pSeries consultant and IBM Redbook author, pSeries Tech Forums was developed with the single mission of bringing IBM pSeries professionals together into a single self-help community. Registration is fast, simple and absolutely free to all IT professionals with responsibility for or interest in IBM pSeries servers. We invite you to join our community today! If you have any problems with the registration process or your account login, please contact contact support. |
| Our Sponsors | |
| | |
| Want to advertise? | |
 |
| | LinkBack | Thread Tools |
|
#1
April 12th, 2007
| ||||
| ||||
I have high level application accounts (i.e. oracle)that I normally do not alow user to directly log into. They must first login with their personal account and su to these application accounts. This way I have a record (via su) as to who is using these accounts. But now we have come across a need for a user to directly login in using these accounts. Is there a way to turn on and off the rlogin=true/false depending on the hostname of the user who wishes to connect. This looks like a need for a homegrown secondary authentication method. Any ideas?          |
rlogin for particular hostname |
#2
April 13th, 2007
| ||||
| ||||
I have found that it very seldom is a need for a login directly to a group/applicationaccount, mostly it's just a convenient matter or lack of knowledge matter. If there however absolutely positively must be a need it can more or less always be dealt with sudo, as we currently have as the best method to offer something similiar to a RBAC solution. And, if it's only for a short while, open it up, say go ahead, turn it off the next day/in a few hours/in 5 minutes.
__________________ --- Rydekull |
|
#3
April 23rd, 2007
| ||||
| ||||
To change the value of rlogin for the user toto, you can do chuser toto rlogin='false' / chuser toto rlogin='true' but I don't see how you can use this command before the user connect. You can use the file '/etc/hosts.equiv' or $Home/.rhosts to specify the hosts or/and the user which can do a rlogin |
|
| Bookmarks |
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| |
Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Loss of hostname | derek | pSeries - System p | 1 | January 21st, 2007 23:15 |
Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO 3.2.0
Powered by vbWiki Pro 1.3 RC5. Copyright ©2006-2007, NuHit, LLC
vBulletin Skin developed by: vBStyles.com
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO 3.2.0
Powered by vbWiki Pro 1.3 RC5. Copyright ©2006-2007, NuHit, LLC
vBulletin Skin developed by: vBStyles.com
