user unable to run at job

bpsunadm · July 28, 2009, 1:06am

Aix version is 5.2. users are not able to run only at jobs. users are listed in at.allow file.

Getting following Errors:

at -l
at: 0481-108 You are not authorized to use the at command.

atq
0481-067 Cannot change to the /var/spool/cron/atjobs directory.

at 24:10:00 pwd
at: 0481-108 You are not authorized to use the at command.

Please suggest me to resolve this issue

Thanks in advance

funksen · July 28, 2009, 4:33am

from the at man page:

       The /var/adm/cron/at.allow and /var/adm/cron/at.deny files control what users can use the at command. A person with root user authority can create, edit, or delete these files. Entries in these files
       are user login names with one name to a line. The following is an example of an at.allow file:

       root
       nick
       dee
       sarah

       If the at.allow file exists, only users whose login names appear in it can use the at command. A system administrator can explicitly stop a user from using the at command by listing the user's login
       name in the at.deny file. If only the at.deny file exists, any user whose name does not appear in the file can use the at command.

       A user cannot use the at command if one of the following is true:
       *    The at.allow file and the at.deny file do not exist (allows root user only).
       *    The at.allow file exists but the user's login name is not listed in it.
       *    The at.deny file exists and the user's login name is listed in it.

       If the at.allow file does not exist and the at.deny file does not exist, only users with root authority can submit a job with the at command.

specially the last sentence

bpsunadm · July 29, 2009, 12:20am

Users are listed in at.allow file and at.deny file also exist.

And also checked, daemon=true for all users

How we can proceed further in this?

pernasivam · July 29, 2009, 6:37am

Is that user is schedule the job more than 60 numbers in 60 seconds?
How many users are listed in the at.allow file? Check with at.deny file the same user name is exist or not? Other wise please restart or stop and start the deamon.

methyl · July 29, 2009, 8:09am

Couple more thinks to check.
Permissions on at.allow file should be 444 .
There should be one login name per line in at.allow.

dukessd · July 29, 2009, 7:16pm

check the perms on /var/spool/cron/atjobs are 770