Configuration Files and Commands for User Management in AIX




The files listed below are some important files for User Management in AIX

/etc/security/environ 
  lists environment attributes for each user
/etc/security/lastlog 

  lists last login attributes for each user
/etc/security/limits  
  lists process resource limits for each user
/etc/security/user 
  lists extended user attributes for  each user
/usr/lib/security/mkuser.default 
  lists default attributes for new users
/usr/lib/security/mkuser.sys 
  script that sets up the user's environment
/etc/passwd 
  lists basic user attributes for each user
/etc/security/passwd 
  contains password information for each user
/etc/security/login.cfg 
  lists login security information for each user
/etc/utmp 
  contains users that are logged into the system, used by the
  "who" command
/var/adm/wtmp 
  contains connect time information for users
/etc/security/failedlogin 
  contains unsuccessful login attempts
/etc/motd 
  message of the day that is displayed when the user logs in.
/etc/environment 
  Lists the default environment that new processes will use.
/etc/profile 
  environment settings for all  users
$HOME/.profile 
  environment settings for a specific user
/etc/group 
  lists attributes for each group
/etc/security/group 
  lists extended attributes for each group


Use the file /etc/security/user attributes to know about the following:

account_locked  
  true or false
expires
  Expiration time for a user account.  MMDDHHMMYY,  a value of 0 indicates 
  no expiration
loginretires 
  Number of invalid login attempts before a users is not allowed to login.  A
  value of 0 indicates this attribute is disabled.
maxage 
  Maximum number of weeks a password is valid, a value of 0 indicates
  unlimited
minage 
  Minimum nuimber of weeks between password changes.

Commands for User Administration in AIX :

mkuser 
  To the creates a new user
passwd 
  change the user's password
chuser 
  change the user's attributes
luser
  lists the attributes for a specific 
  user account
lsuser -f
  lists each attribute on it's own
  line
rmuser 
  utility that removes a user
chsec 
  change the user's security 
  attributes
login
  lists who is currently logged into
  the system
who 
whoami (who am i) 
displays information about
yourself


Procedure to add a new user:

    mkuser <USERNAME> or  smitty mkuser


Procedure to change the password of a User:

passwd <USERNAME>

Note: The account needs to be reset if when trying to log in the following message is received:

3004-303 There have been too many unsuccessful login attempts; please see
        the system administrator.

Use the below commands to reset the account:

chsec -f /etc/security/lastlog -a "unsuccessful_login_count=0" –s <USERNAME>

chuser "account_locked=false"  <USERNAME>



Share this

Related Posts

Previous
Next Post »

5 comments

Write comments
Anonymous
November 25, 2010 at 5:58 PM delete

hi
is this true for fast connect V3.2.1 ??
also are there any other files by FC to save configuration data?

Reply
avatar
November 25, 2010 at 6:01 PM delete

Hi..

Is your question is related to this article?

can you little explain your question?

-- Parthi

Reply
avatar
Anonymous
November 26, 2010 at 1:06 PM delete

HI
yea my question is related.
Actually i am migrating from fast connect to samba.
so instead of configuring samba manually again, i was thinking to automate it.
for that i need to know where does fast connect actually save its configuration data.

the files u mentioned in beginning are some of them.
so my question is, are there more files where fast connect stores configuration data?

Reply
avatar
Anonymous
November 26, 2010 at 1:22 PM delete

sorry i thought u were telling about fast connect...
i am so sorry i misread :P

Reply
avatar
November 26, 2010 at 1:27 PM delete

Even i was confused still now and trying to understand your question... thanks much for clarification... LOL..!

Reply
avatar

What do you think about this Article? Add your Opinion..! EmoticonEmoticon