Managing Users
You can set up new N1 System Manager users at any time. When you install the Sun N1 System Manager software, the management server's superuser (root) account has all three system default roles automatically added to it, and the Admin role is the account's default role.
The following table provides a quick reference to all the tasks and associated commands used to manage users.
Table 1–3 Managing Users Quick Reference|
Task |
Command Syntax |
|---|---|
# useradd -s # n1sh create user user role role |
|
# n1sh delete user user # userdel |
|
|
set user user defaultrole defaultrole |
|
|
show user user |
|
|
add user user role role |
|
|
remove user user role role |
|
|
show user user |
For more information about these commands, see the Sun N1 System Manager 1.1 Command Line Reference Manual.
To Add an N1 System Manager User
Before You Begin
You must be superuser (root) to add a new user account to the management server's operating system. The rest of the task must be performed by a user with the SecurityAdmin role, such as the superuser account used in this task.
When you create a new user for the N1 System Manager, you can also configure the user's login shell to be either a UNIX® shell or the n1sh shell. If the user's login is configured with the n1sh shell, the user automatically logs into the n1sh shell (N1–ok> prompt) when logging in to the management server.
Steps
-
Log in to the management server as superuser from a remote system.
$ ssh -l root management-server
See To Access the N1 System Manager Command Line for details.
-
Add a new user account to the management server using the useradd command.
Provide the following configuration details:
-
Use the useradd -s option to configure the user's shell to automatically log into the n1sh shell. For example: useradd -s /opt/sun/n1gc/bin/n1sh
-
Use the passwd command to set the user's password.
-
Add /opt/sun/n1gc/bin to the user's path in order to access the n1sh command.
See the management server's useradd man page for more information.
-
-
Add the user to the N1 System Manager with one or more roles.
# n1sh -r SecurityAdmin create user user role role[,role...]
The -r option enables you to run the n1sh command with the SecurityAdmin role, which is required for this step. See create user in Sun N1 System Manager 1.1 Command Line Reference Manual for details. You can also use the add user command to later add more roles.
To Delete an N1 System Manager User
Before You Begin
You must be superuser (root) to delete an existing user account from the management server's operating system. The rest of the task must be performed by a user with the SecurityAdmin role, such as the superuser account used in this task.
Steps
-
Log in to the management server as superuser from a remote system.
$ ssh -l root management-server
See To Access the N1 System Manager Command Line for details.
-
Delete the user from the N1 System Manager.
# n1sh -r SecurityAdmin delete user user
The -r option enables you to run the n1sh command with the SecurityAdmin role, which is required for this step. See delete user in Sun N1 System Manager 1.1 Command Line Reference Manual.
-
(Optional) Delete the user account from the management server by using the management server's userdel command.
To Set a User's Default
Role
Users are automatically logged in to the N1 System Manager with their default role.
Steps
-
Log in to the N1 System Manager.
See To Access the N1 System Manager Command Line for details.
-
Show which roles are added to the user.
N1-ok> show user user
See show user in Sun N1 System Manager 1.1 Command Line Reference Manual for details.
-
Set a user's default role.
N1-ok> set user user defaultrole defaultrole
See set user in Sun N1 System Manager 1.1 Command Line Reference Manual for details.
Example 1–2 Setting a User's Default Role
The following example shows setting the SecurityAdmin role as the default role for the root user.
N1-ok> show user root Name: root Default Role: Admin Roles: SecurityAdmin, ReadOnly, Admin N1-ok> set user root defaultrole SecurityAdmin |
To Show a User's Default
Role
Steps
-
Log in to the N1 System Manager.
See To Access the N1 System Manager Command Line for details.
-
Show a user's default role.
N1-ok> show user user
See show user in Sun N1 System Manager 1.1 Command Line Reference Manual for details.
Example 1–3 Showing a User's Default Role
The following example shows that the root user has the Admin default role.
N1-ok> show user root Name: root Default Role: Admin Roles: SecurityAdmin, ReadOnly, Admin |
To Add a Role to a
User
Steps
-
Log in to the N1 System Manager.
See To Access the N1 System Manager Command Line for details.
-
Add one or more roles to a user.
N1-ok> add user user role role[,role...]
See add user in Sun N1 System Manager 1.1 Command Line Reference Manual for details. You can use the show role all command to list all of the valid roles.
To Remove a Role From
a User
Steps
-
Log in to the N1 System Manager.
See To Access the N1 System Manager Command Line for details.
-
Remove one or more roles from a user.
N1-ok> remove user user role role[,role...]
See remove user in Sun N1 System Manager 1.1 Command Line Reference Manual for details. You can use the show user user command to list all the roles currently added to the user.
To List the Roles
Added to a Specific User
Steps
-
Log in to the N1 System Manager.
See To Access the N1 System Manager Command Line for details.
-
List the roles that are added to a user.
N1-ok> show user user
See show user in Sun N1 System Manager 1.1 Command Line Reference Manual for details.
Example 1–4 Listing the Roles that are Added to a Specific User
The following example shows that the root user currently has the SecurityAdmin, ReadOnly, and Admin roles.
N1-ok> show user root Name: root Default Role: Admin Roles: SecurityAdmin, ReadOnly, Admin |
- © 2010, Oracle Corporation and/or its affiliates