Hello everyone,
Can anyone help me please. I want to disable SSH direct access for an AIX user.
For example, if I have USER1 and USER2. I want to disactivate direct access for USER2. The user must enter his login (USER1) and his password and then he can do
su - USER2
.
Thanks,
It should be enough to use:
# chuser rlogin=false USER2
You may also want to turn off "local/console" logins as well.
# chuser login=false rlogin=false USER2
Additionally, you can create a special group and put USER1 (i.e. any user permitted to su to USER2 account) into that group (e.g., su_user2)
# chuser sugroups=su_user2 USER2
It works. Thank you MichaelFel.
Your welcome - Happy Holidays!