passmgmt(1M) — ADMINISTRATOR COMMANDS
NAME
passmgmt − password files management
SYNOPSIS
passmgmt −a options name
passmgmt −m options name
passmgmt −d name
DESCRIPTION
The passmgmt command updates information in the password files. This command works with both /etc/passwd and /etc/shadow.
passmgmt −a adds an entry for user name to the password files. This command does not create any directory for the new user and the new login remains locked (with the string ∗LK∗ in the password field) until the passwd(1) command is executed to set the password.
passmgmt −m modifies the entry for user name in the password files. The name field in the /etc/shadow entry and all the fields (except the password field) in the /etc/passwd entry can be modified by this command. Only fields entered on the command line will be modified.
passmgmt −d deletes the entry for user name from the password files. It will not remove any files that the user owns on the system; they must be removed manually.
The following options are available:
−c comment A short description of the login. It is limited to a maximum of 128 characters and defaults to an empty field.
−h homedir Home directory of name. It is limited to a maximum of 256 characters and defaults to /usr/name.
−u uid UID of the name. This number must range from 0 to the maximum non-negative value for the system. It defaults to the next available UID greater than 99. Without the −o option, it enforces the uniqueness of a UID.
−o This option allows a UID to be non-unique. It is used only with the −u option.
−g gid GID of the name. This number must range from 0 to the maximum non-negative value for the system. The default is 1.
−s shell Login shell for name. It should be the full pathname of the program that will be executed when the user logs in. The maximum size of shell is 256 characters. The default is for this field to be empty and to be interpreted as /usr/bin/sh.
−l logname This option changes the name to logname. It is used only with the −m option.
The total size of each login entry is limited to a maximum of 511 bytes in each of the password files.
SECURITY
If the C2 Security package is installed, the passmgmt(1M) command will establish an authentication ID in the /var/security/audit_id file for the user being added.
FILES
/etc/passwd,
/etc/shadow,
/etc/opasswd,
/etc/oshadow
SEE ALSO
useradd(1M), userdel(1M), usermod(1M), passwd(1), passwd(4), shadow(4), audit_id(4)
DIAGNOSTICS
The passmgmt command exits with one of the following values:
0Success.
1Permission denied.
2Invalid command syntax. Usage message of the passmgmt command will be displayed.
3Invalid argument provided to option.
4UID in use.
5Inconsistent password files (for example, name is in the /etc/passwd file and not in the /etc/shadow file, or vice versa).
6Unexpected failure. Password files unchanged.
7Unexpected failure. Password file(s) missing.
8Password file(s) busy. Try again later.
9name does not exist (if −m or −d is specified), already exists (if −a is specified), or logname already exists (if −m −l is specified).
10A user with the user name of name and uid of uid already exists in the var/security/audit_id file with a different comment field. (This value applies to systems with the C2 security package installed.)
NOTES
You cannot use a colon or carriage return as part of an argument because it is interpreted as a field separator in the password file. This command will be removed in a future release. Its functionality has been replaced and enhanced by useradd, userdel, and usermod. These commands are currently available.