Go to main content

Trusted Extensions Configuration and Administration

Exit Print View

Updated: March 2019
 
 

How to Delete a User Account From a Trusted Extensions System

When a user is removed from the system, you must ensure that the user's home directory and any objects that the user owns are also deleted. As an alternative to deleting objects that are owned by the user, you might change the ownership of these objects to a valid user.

You must also ensure that all batch jobs that are associated with the user are also deleted. No objects or processes belonging to a removed user can remain on the system.

Before You Begin

You must be in the System Administrator role in the global zone.

  1. Archive the user's home directory at every label.
  2. Archive the user's mail files at every label.
  3. Delete the user account.
    # userdel -r jdoe
  4. In every labeled zone, manually delete the user's directories and mail files.

    Note - You are responsible for finding and deleting the user's temporary files at all labels, such as files in /tmp directories.

    For further considerations, see User Deletion Practices in Oracle Solaris 11.4 Security and Hardening Guidelines.