linux is a multi-user and multitasking OS. In Linux, you can create any number of user account and groups. A user is always connected to a particular group and there can be any number of groups as well.

The user home directory by default is created under “/home” directory with the user name. E.g. User techbie has home directory “/home/techbie”, the mail account is created under “/var/spool/mail/”.

Each user and group in the system is identified by a unique no called as ID.

/etc/passwd

The file whare system user account definition is done is /etc/passwd. This file has the following strucutre

#cat /etc/passwd

username:a:500:500:Some Comments:/home/username:/bin/sh

username :

The system account username. It should not start with a number or include uppercase letters

a

The password. As a points to /etc/shadow for the password. An * means the account is disabled. A random group of letters and numbers represents the encrypted password

500

the user ID(UID) for the user

500

the group ID (GID) associated with that user

Some comments

Any information can be used in this field

/home/username

By default, RHEL places new home directories in /home/username

/bin/sh

Default user shell

In order add/delete users to the system this file can be edited directly with vipw or using useradd/userdel commends a described in next sections

/etc/group

The file where system group account definition is done is /etc/group . This file has the following structure

#cat /etc/group groupname:x:500:user1,user2

groupname

The system account groupname user gets this own group. BY default when a user is crated is related to a group with groupname equal to username

x

The group password. An x points to /etc/gshadow for the password as user password on /etc/passwd random group of letters and numbers represents the encrypted password

500

The group ID (GID) associated with user

user1, user2

Lists of users that belong t the group If it’s blank means that there is a username that is identical to the groupname

In order to add/delete groups to the system this file can be edited directly with vigr or using useradd/userdel commands as described in net section

/etc/shadow

The /etc/shadow file is can be read for every user on the system so include the encrypted password there is not a good idea. For this reason the file /etc/shadow accessible to root only is used to store the encrypted password

#/etc/shadow

username: $1sdsew$ed%wqee@132ewSDADdsa :14860:0:99999:7:::

Username

Username shadow entry, it is related with username account on /etc/passwd

$1sdsew$ed%wqee@132ewSDADdsa

Encrypted password. An x in the second column of /etc/passwd means that the encrypted password is stored here

14860

Last password changed date. In Linux epoch number if days: number of days after January 1, 1970

0

The values of 0 here means that this user can keep this password forever

99999

The system will ask to user to change his password after 99999 days since account creation

::

The values means the number if days before password expiration when is made a warning is given in this case none

::

the sets the no of days after password expiration when an account is made inactive in this case none

::

the values means the number if days after password expiration when an account is disabled in this case none

Adding user account:

When a user account needs to be added to the system the commend useradd must be used:

# useradd -u 678 -c “Test add user” -d /home/techbie -s /bin/bash techbie

With this command we have created the user account techbie with UID=678 which home directory in /home/techbie and default shell bash. By default the user is assigned to a new created group silicon with GID=678. This values can be changed using the -g option

#cat /etc/passwd

techbie:x:678:678:Test add user:/home/techbie:/bin/bash

Deleting user Account:

When a user account needs to be removed in the system the commend userdel must be used:

# userdel r techbie

With this commend all information about techbie account in removed on the system, including all home directory and mail spool files.

Modifying user Account:

I order to change the parameters of an existing account the commends usermod and/or chage can be used

# usermod e 2016-07-30 techbie

Sets the expiration account day for user “techbie” to 2016-07-30

# usermod G sales techbie

Sets ‘techbie’ account group ownership to sales group

# chage E -1 techbie

Removes any account expiration date for user “techbie”

# usermod expiredate 2016-07-30 techbie

Sets the expiredate for a user account techbie

# passwd d techbie

Disable the user account techbie

# passwd u techbie

Unlock the user account techbie

Linux User and Group Management的更多相关文章

  1. Linux指令--/etc/group文件

    Linux /etc/group文件与/etc/passwd和/etc/shadow文件都是有关于系统管理员对用户和用户组管理时相关的文件.linux /etc/group文件是有关于系统管理员对用户 ...

  2. 每天一个linux命令: /etc/group文件详解

    Linux /etc/group文件与/etc/passwd和/etc/shadow文件都是有关于系统管理员对用户和用户组管理时相关的文件.linux /etc/group文件是有关于系统管理员对用户 ...

  3. (linux)idr(integer ID management)机制

     最近研究进程间通信,遇到了idr相关的函数,为了扫清障碍,先研究了linux的idr机制. IDR(integer ID management)的要完成的任务是给要管理的对象分配一个唯一的ID,于 ...

  4. Linux LVM Logical Volume Management 逻辑卷的管理

    博主是一个数据库DBA,但是一般来说,是不做linux服务器LVM 逻辑卷的创建.扩容和减容操作的,基本上有系统管理员操作,一是各司其职,专业的事专业的人做,二是做多了你的责任也多了,哈哈! 但是li ...

  5. linux 学习随笔-group和user管理

    1:/etc/passwd 打开该文件,可以看到每一行内容被分割成了7个字段比如:root:x:0:0:root:/root:/bin/bash 第一个字段表示用户名为root用户 第二个字段存放了该 ...

  6. <<Linux kernel development>> Process Management

    The Process On modern operating systems,processes provide two virtualizations:a virtualized processo ...

  7. Neutron 理解(14):Neutron ML2 + Linux bridge + VxLAN 组网

    学习 Neutron 系列文章: (1)Neutron 所实现的虚拟化网络 (2)Neutron OpenvSwitch + VLAN 虚拟网络 (3)Neutron OpenvSwitch + GR ...

  8. linux根文件系统制作

    在嵌入式中移植的内核下载到开发板上,是没有办法真正的启动Linux操作系统的,会出现无法加载文件系统的错误. 那么根文件系统在系统启动中到底是什么时候挂载的呢?先将/dev/ram0挂载,而后执行/l ...

  9. Linux就这个范儿 第16章 谁都可以从头再来--从头开始编译一套Linux系统 nsswitch.conf配置文件

    Linux就这个范儿 第16章 谁都可以从头再来--从头开始编译一套Linux系统  nsswitch.conf配置文件 朋友们,今天我对你们说,在此时此刻,我们虽然遭受种种困难和挫折,我仍然有一个梦 ...

随机推荐

  1. spring AOP 编程--AspectJ注解方式 (4)

    1. AOP 简介 AOP(Aspect-Oriented Programming, 面向切面编程): 是一种新的方法论, 是对传统 OOP(Object-Oriented Programming, ...

  2. CSS三大特性之继承性

    1.并不是所有的属性都可以继承,只有以color/font/text/line开头的属性 才可以继承. 2.在CSS的继承中,不仅仅是儿子可以继承,只要是后代都可以继承. 3.继承中的特殊性 3.1  ...

  3. struts2文件上传,文件类型 allowedTypes对应

    '.a' : 'application/octet-stream', 2 '.ai' : 'application/postscript', 3 '.aif' : 'audio/x-aiff', 4 ...

  4. opencv编译:The CXX compiler identification is unknown The C compiler identification is unknown

    opencv编译:The CXX compiler identification is unknown The C compiler identification is unknown 解决方法: F ...

  5. 【模板篇】splay(填坑)+模板题(普通平衡树)

    划着划着水一不小心NOIP还考的凑合了… 所以退役的打算要稍微搁置一下了… 要准备准备省选了…. 但是自己已经啥也不会了… 所以只能重新拾起来… 从splay开始吧… splay我以前扔了个板子来着, ...

  6. Educational Codeforces Round49

    A Palindromic Twist(字符串) 问每个字母必须向左或向右变成另一个字母,问能不能构成回文 #include <iostream> #include <string. ...

  7. LuoguP3338 [ZJOI2014]力

    题目描述 给出n个数qi,给出Fj的定义如下: \[F_j = \sum_{i<j}\frac{q_i q_j}{(i-j)^2 }-\sum_{i>j}\frac{q_i q_j}{(i ...

  8. Ascii码 、16进制与 char

            对于一个非计算机专业出身的人,以前只知道计算机中所有的数据都是以二进制形式进行存储,计算,通信的.但是人类文明中,主要的信息展现以文本的形式展现的.如果使用内存中的0和1来表示文本一直 ...

  9. C++:多线程001

    C++ 多线程 创建线程的API函数 HANDLE CreateThread( LPSECURITY_ATTRIBUTES lpThreadAttributes,//SD:线程安全相关的属性,常置为N ...

  10. [转]C#的扩展方法解说

    C#的扩展方法解说 扩展方法的目的就是为一个现有类型添加一个方法,现有类型既可以是int,string等数据类型,也可以是自定义的数据类型. 为数据类型的添加一个方法的理解:一般来说,int数据类型有 ...