Nishimura, Scott L (IT Solutions) schrieb:
I ran into a problem with "kioskuseradm extend": apparently it wants to
add one to the highest kiosk account UID.
Yes. All kiosk user accounts must be one contiguous range.
So to be able to extend, you need to have free UIDs after the end of the
current range.
You also must not use any of the needed utkuXXX user names for a
non-kiosk user account.
But, in the interim of when I
created the accounts, other accounts have been created and they used
that block of userIDs:
16:54 rsunsu-is-sr01: / {32} # /opt/SUNWkio/bin/kioskuseradm extend -c
200
Validating new user ids.
Some requested user ids are in use.
- userA (uid=150300)
- userB (uid=150301)
Validating new user accounts.
No new accounts were created. Seems I'm going to have to use usermod to
change the UID and then chown to correct for file ownership.
Caveat kioskor
It is probably simpler to move the kiosk user account range to a
collision-free place.
Kiosk should delete all files owned by the kiosk user accounts when
kiosk sessions exit, so fixing of file ownerships should not be needed.
Use
# kioskuseradm modify -u <new-start-of-range> -c <new-total-count>
This (as opposed to 'extend') requires that no kiosk sessions are
running. You can add the -f option to have kioskuseradm forcefully
terminate all running kiosk sessions for the modify operation.
If you also have name collisions, you can add '-l <new-prefix>' to use a
different prefix instead of 'utku'.
If you want to protect the UID space for later extension, you can add a
dummy account with a high uid, so that any uses of useradd with
automatic choice of UID will go beyond that.
- Jörg
--
Jörg Barfurth http://blogs.sun.com/joergb
Disclaimer: I am employed by Oracle. The statements and opinions
expressed here are my own and do not necessarily represent those
of Oracle Corporation.
_______________________________________________
SunRay-Users mailing list
[email protected]
http://www.filibeto.org/mailman/listinfo/sunray-users
