How to Create a Privileged Account for Multiple Users

You can create an account for multiple users that includes a role with privileges that only some of those users can access.

  1. Use the useradd and passwd commands to add the account.
  2. Use the roleadd and passwd commands to add the role.
  3. Specify the privilege levels in the /etc/user_attr file.
Example 1 Adding a Privileged Account for Multiple Users

For example, to add a user account called guest for multiple users and a role called admin with special privileges within that account, type the following:

# /usr/sbin/useradd/useradd guest
# /usr/bin/passwd guest
# /usr/sbin/roleadd admin
# /usr/bin/passwd admin

To assign privileges to the admin role to restore, stage, archive and release files on archiving file systems, add the following lines to the /etc/user_attr file:

admin::::auths=com.sun.netstorage.fsmgr.operator.file
guest::::type=normal;roles=admin

In this example, when a user logs in as guest,SAM-QFS Manager prompts the user to select either No Role or Admin. If users know the Admin role password, they can select Admin, enter the Admin password, and have privileges to restore and stage file systems. All other users must select No Role and have read-only privileges.