One Identity Management Console for Unix 2.5.2 - Administration Guide

One Identity Privileged Access Suite for Unix Introducing One Identity Management Console for Unix Installing Management Console for Unix Preparing Unix hosts Working with host systems Managing local groups Managing local users Active Directory integration Authentication Services integration Privilege Manager integration
Getting started Configure a primary policy server Configure a secondary policy server Install PM agent or Sudo plugin on a remote host Security policy management
Opening a policy file Edit panel commands Editing PM policy files Reviewing the Access and Privileges by User report Reviewing the Access and Privileges by Host report
Event logs and keystroke logging
Reporting Setting preferences
User preferences System preferences
Security Troubleshooting tips
Auto profiling issues Active Directory Issues Auditing and compliance Cannot create a service connection point Check Authentication Services agent status commands not available CSV or PDF reports do not open Database port number is already in use Elevation is not working Hosts do not display Import file lists fakepath Information does not display in the console License information in report is not accurate Out of memory error Post install configuration fails on Unix or Mac Privilege Manager feature issues Profile task never completes questusr account was deleted Readiness check failed Recovering from a failed upgrade Reports are slow Reset the supervisor password Running on a Windows 2008 R2 domain controller Service account login fails Setting custom configuration settings Single Sign-on (SSO) issues JVM memory tuning suggestions Start/stop/restart Management Console for Unix service Toolbar buttons are not enabled UID or GID conflicts
System maintenance Command line utilities Web services Database maintenance About us

Adding a local group

You can use the mangement console to remotely add a local group to the host.

Note: This topic instructs you to set up a local group by the name of "localgroup" referred to by other examples in this guide.

To add a local group to the host

  1. From the All Hosts view, double-click a host name to open its properties.
  2. Select the Groups tab and click Add Group.
  3. In the Add New Group dialog, enter localgroup as a local group name in the Group Name box and click Add Group.
  4. In the Log on to Host dialog, enter your credentials and click OK.

    Note: This task requires elevated credentials. Credential information is entered by default from the cache.

    The new local group account is added to the system and mangement console.

Add New Group dialog

The Add New Group dialog displays when you click the Add Group toolbar button on the Groups tab of a host's properties. Use this dialog to add a new group to the selected host.

Table 24: Add New Group dialog
Option Description
Group Name

Enter the name to assign to the new group.

GID

The GID field is automatically populated with the next available GID number, which is used to identify the new group. Default GID numbers start at 1000.

Searching for groups

Use the Search for groups control to search for a particular group or groups on a host's Groups tab.

To search for groups

  1. Place your cursor in the Search for groups box and enter one or more characters. As you enter characters into the text box, the mangement console displays the groups whose name matches (contains) the criteria entered.
  2. To clear the text box and redisplay the original groups list, click the to the right of the search box.

Modifying a local group's properties

Modify the general properties of a local Unix group from the Groups tab of a host's properties.

To modify a local group's properties

  1. Right-click the group name and choose Properties.

    You can also double-click a group from the list to open its properties.

  2. On the General tab of the group's properties, modify the group information.
  3. On the Members tab, add or remove users from the local group.
  4. Click OK.
  5. On the Log on to Host dialog, enter the user credentials and click OK.

    Note: This task requires elevated credentials.

Documents connexes