The nisrmuser command removes the NIS+ user account identified by the Name parameter. This command removes a user's attributes without removing the user's home directory and files. The user name must already exist as a string of 8 bytes or less.
Only the root user can remove administrative users. Administrative users are those users with admin=true set in the /etc/security/user file.
You can use the Web-based System Manager Users application or System Management Interface Tool (SMIT) to execute this command within the NIS+ administration section.
Access Control: This command should grant execute (x) access only to the root user and members of the security group. This command should be installed as a program in the trusted computing base (TCB). The command should be owned by the root user with the setuid (SUID) bit set.
Event | Information |
---|---|
USER_Remove | user |
/usr/sbin/nisrmuser | Contains the nisrmuser command. |
The chfn command, chgrpmem command, chsh command, chgroup command, chuser command, lsgroup command, lsuser command, mkgroup command, mkuser command, passwd command, pwdadm command, rmgroup command, setgroups command, setsenv command.
For more information about the identification and authentication of users, discretionary access control, the trusted computing base, and auditing, refer to Security Administration in the AIX 5L Version 5.1 System Management Guide: Operating System and Devices.
For more information about administrative roles, refer to Administrative Roles Overview in the AIX 5L Version 5.1 System Management Guide: Operating System and Devices.
For information on installing the Web-based System Manager, see Chapter 2: Installation and System Requirements in AIX 5L Version 5.1 Web-based System Manager Administration Guide.