Before you start to do user and group management you must:
- For security reasons, create substitute user and name it as you like, here it is referred as noroot:
# useradd -m -G wheel _noroot_
- Set password for noroot user:
# passwd _noroot_
Exit and log in as noroot user.
Use the su command to obtain the root privileges for noroot:
Forget to use the root for maintenance or regular administration of the system. You free to find any secure and convenient spot for the root password be available upon your need.
If your favorite user with login password is already assigned in the system and no need to create new one. Omit first steps from above. Do modify user information by adding your no root user into the wheel group and su anytime per your desire:
# usermod -G wheel _noroot_
The NetBSD maintains information in regard of each user who logs into, access system, runs processes on so forth. This include and not limited to:
- user name - password - group - base_dir - skel_dir - shell - class - homeperm - inactive - expire
The superuser called root has no limitations on its privileges.
To limit user priveleges consider to set limits by: coredumpsize, cputime, filesize, quota, maxproc, memory, openfiles etc.
user is frontend to the useradd, usermod, userinfo and userdel commands, it helps to manage users in the system.
Use id to see user identity:
Use w to see who present and what they are doing:
Use last to see last logins:
To add user do:
**user add** [options] _user_
To add a user and create a new home directory:
**# useradd -m** _myuser_
Look into the NetBSD Guide Chapter 5.6
To see user information do:
**$ userinfo** _myuser_
To modify existing user login do:
**# user mod** [options] _user_ **# usermod -C yes** _username_ ; set Close lock on user account **# usermod -C no** _username_ ; unlock user account **# usermod -G wheel** _username_ ; add user to group _wheel_ **# usermod -s /sbin/nologin** _username_ ; remove login shell **# usermod -s /bin/sh** _username_ ; set login shell **# usermod -F** _username_ ; force user to change password
To remove a user from the system do:
**# userdel** _myuser_
To see a list of all users in the system do:
$ cat /etc/passwd
To edit /etc/passwd file do:
Use chpass, chfn, chsh) to add or change user database information.
To change the shell of myuser, for an exapmle to /bin/ksh:
**# chpass -s /bin/ksh** _myuser_
To manage groups check /etc/group file which maintains name of each group, group id and list of users who is a group member.
group is frontend to the groupadd, groupmod, groupinfo and groupdel commands, it helps to manage groups in the system.
To add group do:
**group add** [options] _group_
To delete group do:
**group del** [options] _group_
To obtain group information do:
**group info** [options] _group_
To modify existing group do:
**group mod** [options] _group_
To remove user from the group you have to do user del and then add user again.
To change files/directory ownership:
#chown -R myuser path
Where myuser is the name of user and path is directory where files are located.
Use quota to set users quotas per desire.