[ Next Article | Previous Article | Book Contents | Library Home | Legal | Search ]
Commands Reference, Volume 4

rmuser Command

Purpose

Removes a user account.

Syntax

rmuser [ -p ] Name

Description

The rmuser command removes the user account identified by the Name parameter. This command removes a user's attributes without removing the user's home directory and files. The user name must already exist as a string of 8 bytes or less. If the -p flag is specified, the rmuser command also removes passwords and other user authentication information from the /etc/security/passwd file.

Only the root user or users with UserAdmin authorization can remove administrative users. Administrative users are those users with admin=true set in the /etc/security/user file.

You can use the Web-based System Manager Users application (wsm users fast path) to run this command. You could also use the System Management Interface Tool (SMIT) smit rmuser fast path to run this command.

Flags

-p Removes user password information from the /etc/security/passwd file.

Security

Access Control: This command should grant execute (x) access only to the root user and members of the security group. This command should be installed as a program in the trusted computing base (TCB). The command should be owned by the root user with the setuid (SUID) bit set.

Files Accessed:

Mode File
rw /etc/passwd
rw /etc/security/passwd
rw /etc/security/user
rw /etc/security/user.roles
rw /etc/security/limits
rw /etc/security/environ
rw /etc/security/audit/config
rw /etc/group
rw /etc/security/group

Auditing Events:

Event Information
USER_Remove user

Examples

  1. To remove the user davis account and its attributes from the local system, enter:
    rmuser davis
  2. To remove the user davis account and all its attributes, including passwords and other user authentication information in the /etc/security/passwd file, enter:
    rmuser -p davis

Files

/usr/sbin/rmuser Contains the rmuser command.
/etc/passwd
                          Contains the basic attributes of users.
/etc/security/passwd
                          Contains password information.
/etc/security/limits
                          Defines resource quotas and limits for each user.
/etc/security/user
                          Contains the extended attributes of users.
/etc/security/user.roles
                          Contains the administrative role attributes of users.
/etc/security/environ
                          Contains environment attributes of users.
/etc/security/audit/config
                          Contains audit configuration information.
/etc/group
                          Contains the basic attributes of groups.
/etc/security/group
                          Contains the extended attributes of groups.

Related Information

The chfn command, chgrpmem command, chsh command, chgroup command, chuser command, lsgroup command, lsuser command, mkgroup command, mkuser command, passwd command, pwdadm command, rmgroup command, setgroups command, setsenv command.

For more information about the identification and authentication of users, discretionary access control, the trusted computing base, and auditing, refer to Security Administration in AIX Version 4.3 System Management Guide: Operating System and Devices.

For more information about administrative roles, refer to Administrative Roles Overview in AIX Version 4.3 System Management Guide: Operating System and Devices.

Setting up and running Web-based System Manager in AIX Version 4.3 System Management Guide: Operating System and Devices.


[ Next Article | Previous Article | Book Contents | Library Home | Legal | Search ]