Difference between revisions of "creating a new user on secureplatform via CLI"
From cpwiki.net
Line 1: | Line 1: | ||
+ | 1 - create user account with the standard linux useradd command... | ||
+ | [Expert@chkpfw]# useradd -d /home/''username username'' | ||
− | + | 2 - set the userpassword | |
+ | [Expert@chkpfw]# /usr/bin/passwd ''username'' | ||
+ | |||
+ | <p>*** note *** the full path is required in the above command because Check Point aliases passwd to...</p> | ||
+ | alias passwd='/bin/expert_passwd' | ||
+ | <p>If you fail to execute the passwd binary by using the full path, you most likely won't be setting the user password, but the expert password... which is actually the password for the root account</p> | ||
+ | |||
+ | [Expert@chkpfw]# '''passwd john''' | ||
+ | Enter new expert password: <<< if you see this prompt you messed up! | ||
+ | |||
+ | 3 - edit /etc/passwd...set UID and GUID to zero and default shell to /bin/cpshell | ||
+ | john:x:0:0::/home/admin:/bin/cpshell | ||
[[category:sysadmin]] | [[category:sysadmin]] |
Revision as of 20:57, 18 July 2013
1 - create user account with the standard linux useradd command...
[Expert@chkpfw]# useradd -d /home/username username
2 - set the userpassword
[Expert@chkpfw]# /usr/bin/passwd username
*** note *** the full path is required in the above command because Check Point aliases passwd to...
alias passwd='/bin/expert_passwd'
If you fail to execute the passwd binary by using the full path, you most likely won't be setting the user password, but the expert password... which is actually the password for the root account
[Expert@chkpfw]# passwd john Enter new expert password: <<< if you see this prompt you messed up!
3 - edit /etc/passwd...set UID and GUID to zero and default shell to /bin/cpshell
john:x:0:0::/home/admin:/bin/cpshell