|Applies To||RSA ACE/Server|
UNIX (AIX, HP-UX, Solaris)
RSA ACE/Agent for UNIX
|Issue||How to su, as root, to a user account protected by securid, without getting Passcode prompted.|
Usage for the different SecurID shells on UNIX.
How to su to other users accounts without getting PASSCODE prompted.
|Resolution||ACE/Server comes with three different shells that can be assigned to users:|
sdshell ---> The shell that requires RSA SecurID authentication of users on UNIX clients, including AIX clients using name servers such as NIS or DNS, but excluding AIX clients using an authentication method defined in /etc/security/login.cfg.
sdshell_auth ---> The shell used to RSA SecurID-authenticate users on AIX clients that do not use name servers. A user?s primary authentication method on these clients must be ?SecurID,? and RSA SecurID must be defined in /etc/security/login.cfg to run sdshell_auth.
sdshell_adm ---> For system administrators who prefer the convenience of using the su command without having to provide an RSA SecurID PASSCODE, a third authentication shell, sdshell_adm, is provided.
|Legacy Article ID||6.0.3660818.2944161|