Change user rights ONLY with terminal

Similar Messages

• ZfD Management Agent Install having WINXP User rights only

  Hi,
  I nee to rollout the ZfD Management Agent at WinXP - Systems where alle
  Workstations / Users having User-Ricghts only.
  May somebody knows if there is s hidden switch so that i can install it
  with system right - because ZfD is not rolled out.
  regards,
  Heiko Braza

  [email protected] wrote:
  > I nee to rollout the ZfD Management Agent at WinXP - Systems where alle
  > Workstations**/*Users*having*User-Ricghts*only.
  > May somebody knows if there is s hidden switch so that i can install it
  > with system right - because ZfD is not rolled out.
  take a look at sanur.exe (google) that will allow you to run programs with
  adminrights..
  Marcus Breiden
  If you are asked to email me information please change -- to - in my e-mail
  address.
  The content of this mail is my private and personal opinion.
  http://www.edu-magic.net

• User rights: only reading

  hello.
  I'd like to create a user with only reading rights, on all a server.
  How to create that user, because I didn't see nothing in the useradd command options?
  Thank you

  That's because it's not an option of the useradd command.
  The easy way I see for going about this is by creating a new group for this user, which isn't used for any other users.
  * The user's homedir is the only place where it'll be allowed to write, with the exception of /tmp.
  * The user can only read (or execute) all other files on the system, since it doesn't own any of these files, nor does his group.
  But this isn't even close to what you want.
  I'm curious if someone knows a real solution :)

• Core Center under XP with user-rights only

  I am using WIN-XP SP2 prof.
  I have installed core-center in latest version.
  Everything is alright, when i am logged in as  a Admin.
  But when i login as a normal user I can not start Core-Center via
  Startup-Folder.
  I don't want give the Admin-password to other users.
  What can I do ?
  Peter

  Some other possibilites:
  1. You can have the complete information if the data is submitted in FDF, XML, or XFDF. I opened the submit box in AA7 and noted the settings. The fact I can open it in AA7 was a bit surprising. The reason I suggest the data files is that they do not require extended rights and can simply be impored to the form on your end to get the identical results as if the whole form had been sent.
  2. I could only play the media file, but that is likely a capability of AA7 rather than an issue with flash and such.
  3. E-mail may be an issue. Some systems require additional work to be able to use E-mail for form submission. Prior to AA9, mailto require MAPI on the client machine.
  Don't know if any of these help or not, but at least they are some more tidbits of info.

• Change user's OU with punctuation mark doesn't work by Rename User View

  Hi,
  I have problem with moving user between OU by Rename User View when punctuation mark in name of OU is used.
  I have own WF that assign user to specific OU depending on value of Select component. When value of this component is changed (against previous value) I call Rename View, that assign user to new OU. For OU without punctuation mark Rename View works OK.
  After finishing WF with punctuation mark in OU this Error appers:
  java.lang.RuntimeException: There is no such object on the server.
  But creating new AD account (by role assignment) in OU with punctuation work OK. In select component is rule that replace puctional character in correct form.
  Select component:
  <Field name='slctOrganizationalUnitUzivatele'>
                  <Display class='Select' action='true'>
                      <Property name='title' value='Nastavte organizacni jednotku:'/>
                      <Property name='allowedValues'>
                          <block>
                              <dolist name='zmena'>                             
                                  <invoke name='listResourceObjects' class='com.waveset.ui.FormUtil'>
                                      <invoke class='com.waveset.session.SessionFactory' name='getServerInternalContext' />
                                      <s>OrganizationalUnit</s>
                                      <s>AD</s>
                                      <null/>
                                      <s>false</s>
                                  </invoke>
                                   <rule name="RUL nahrada znaku">
                                      <argument name="inputString">
                                          <ref>zmena</ref>
                                      </argument>
                                      <argument name='hledanyRetezec'>
                                          <s>\,</s>
                                      </argument>
                                      <argument name='nahrazovaciRetezec'>
                                          <s>\, </s>
                                      </argument>
                                  </rule>                              
                               </dolist>
                          </block>
                      </Property>
                      <Property name='sorted'>
                          <Boolean>true</Boolean>
                      </Property>
                  </Display>
                  <Default>
                      <upcase>
                          <ref>user.accounts[AD].ad_container</ref>
                      </upcase>
                  </Default>
              </Field>
  WF-Rename User
  <Activity id='10' name='renameUzivatele'>
          <Action id='0' application='com.waveset.session.WorkflowServices'>
            <Argument name='op' value='checkoutView'/>
            <Argument name='type' value='RenameUser'/>
            <Argument name='id' value='$(user.waveset.accountId)'/>
            <Argument name='authorized' value='true'/>
            <Return from='WF_ACTION_ERROR' to='error'/>
            <Return from='view' to='renameView'/>
          </Action>
          <Action id='1'>
            <expression>
              <block>
                <set name='renameView.accounts[AD].identity'>
                  <ref>newDNrecord</ref>
                </set>
                <set name='renameView.resourceAccounts.currentResourceAccounts[AD].identity'>
                  <ref>newDNrecord</ref>
                </set>
                <set name='renameView.resourceAccounts.currentResourceAccounts[AD].selected'>
                  <s>true</s>
                </set>
                <set name='user.global.OrganizationalUnit'>
                  <ref>slctOrganizationalUnitUzivatele</ref>
                </set>             
              </block>
            </expression>
          </Action>
          <Action id='2' application='com.waveset.session.WorkflowServices'>
            <Argument name='op' value='checkinView'/>
            <Argument name='view' value='$(renameView)'/>
            <Argument name='authorized' value='true'/>
          </Action>
          <Transition to='nastaveniPristupu-overeni'/>
          <WorkflowEditor x='193' y='343'/>
        </Activity>
  <set name='newDNrecord'>
                  <concat>
                    <s>CN=</s>
                    <ref>user.global.fullname</ref>
                    <s>,</s>
                    <ref>slctOrganizationalUnitUzivatele</ref>
                  </concat>
                </set>Do you have any ideas?
  Thanks Petr

  Hi,
  I discovered following:
  - if name of OU in AD is without space (e.g. test,sample) so DN record is test\,sample and user is moved into this OU.
  - if name of OU in AD is with space (e.g. test, sample) so DN record is still test\,sample and user isn't moved.
  So problem is with empty space. How can I preserve space in DN name? I found something in documentation but I doesn't work for me.
  +Special Characters in FieldValues
  If you have a field value with a comma (,) or double quote (") character, or you want to preserve leading or trailing spaces, you must embed your field value within a pair of double quotes ("field_value"). You then need to replace double quotes in the field value with two double quote (") characters. For example, "John ""Johnny"" Smith" results in a field value of John "Johnny" Smith. +
  (from IDM Business Administrator's Guide, p.77)
  Guided this information I put value of slctOrganizationalUnitUzivatele into "". But this didn't work. Is good idea to have space in DN?
  Thanks for help.
  Petr
  Edited by: petrklinkovsky on Sep 10, 2009 5:06 AM

• Cannot add/ change user account - error with Microsoft-Windows-User Profiles Service

  Hello
  A few days ago my computer went wierd.
  I cannot update windows because I get no results when I use "Windows Search"
  My metro UI doesnt work properly. I cannot use it. 
  Somebody said that it could be that my User Account could be corrupted.
  I tried to create I new one, but I could do the first steps, because the computer doesnt respond when I click "Change my account" in controlpanel.
  I get errorlogs like this:
  Loggnamn:      Application
  Källa:         Microsoft-Windows-User Profiles Service
  Datum:         2015-04-29 12:03:16
  Händelse-ID:   1542
  Aktivitetskategori:Ingen
  Nivå:          Fel
  Nyckelord:     
  Användare:     SYSTEM
  Dator:         Baddarn
  Beskrivning:
  Det går inte att läsa in registerfilen för klasser.
   INFORMATION - The system cannot find the file specified.
  Händelsens XML-data:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
      <Provider Name="Microsoft-Windows-User Profiles Service" Guid="{89B1E9F0-5AFF-44A6-9B44-0A07A7CE5845}" />
      <EventID>1542</EventID>
      <Version>0</Version>
      <Level>2</Level>
      <Task>0</Task>
      <Opcode>0</Opcode>
      <Keywords>0x8000000000000000</Keywords>
      <TimeCreated SystemTime="2015-04-29T10:03:16.571099200Z" />
      <EventRecordID>91382</EventRecordID>
      <Correlation />
      <Execution ProcessID="1128" ThreadID="2524" />
      <Channel>Application</Channel>
      <Computer>Baddarn</Computer>
      <Security UserID="S-1-5-18" />
    </System>
    <EventData>
      <Data Name="Error">The system cannot find the file specified.
  </Data>
    </EventData>
  </Event>
  What can I do?

  Hi Intesabra,
  Have you made any modifications to the machine before the issue?
  First of all ,I would suggest you to update the machine manually.
  Control Panel\All Control Panel Items\Windows Update\Check for updates.
  I also suggest you to perform a full scan with the antivirus software to eliminate the virus issue considering this issue is a little wierd. We can do this in safe mode to improve the scanning quality.
  Run "services.msc" to check the status of "User Profiles Service" and ensure it is running.
  Run "dism /online /cleanup-image /restorehealth" or "sfc /scannow" to check the health of the whole system files.
  Considering this issue occurred recently, we can perform a system restore to recover the machine to a previous point.
  Best regards
  Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• "user busy" only with one number i call

  i always get the "user busy" signal, when calling a certain number.
  (only realized with a certain one)
  issue appears as follows:
  after dialing the number/contact on my iphone 4 I can hear the ring once and after that always the "user busy" signal (plus the display showing "user busy", call back etc....)
  already called my provider --> trial call, no issues with the provider
  asked my friend about eventual call forwarding --> nothing thelike, no issues
  hope you can help....

  Norton support is here. <br />
  http://norton.lithium.com/norton/

• Certificates - change the names only with spreadsheet data?

  Hi all,
  I am wondering the easiest way to make a certificate for many people.  The only thing that would change is their name.  Is there a way to have acrobat, illustrator, or InDesign do this with an action, or something, using an excel sheet that has the names in it?
  Thx!

  Online, in My Verizon / View Usage / Minutes / Breakdown of Recent Activity / Current Call Log for Line / Select a Line, a log of calls incoming and outgoing since the last billing date are shown. For years, I would be able to click on the blue telephone number and a popup box would show up to Add/Update Nick Name. I would type in a name, for example, Mom and then click on Add/Update and the name would then replace the number in the listing. As of two months ago, I can still do this EXCEPT the name will NOT replace the number! This is so irritating as I have been assning names to the numbers for years for ease of search and identifying the calls. I have call ed Customer Servcie at least htree times on this issue. I have tried to Add/Edit Nick Name in two odfferent browsers (Internet Explorer as well as Firefox) and I have tried it on two dofferent laptops in two diofferent wireless networks. So I know it is NOT an issue with my hardware or networks. The issue is on Verizon's end. I am puzzled that others have not complained. Maybe I am the only doofud that likes to assign names to the numbers? But I would be most grateful if someone within the Community or Verizon's Customer Servcie can resolve this issue once and for all!!!!!!!!!!!!

• I cannot change Time Machine interval with Terminal

  Time Machine worked every 6 hours under Leopard using command
  sudo defaults write /System/Library/LaunchDaemons/com.apple.backupd-auto StartInterval -int 21600
  but it doesn't work under Snow Leopard. I mean, TM backups every hour.
  In fact, I opened com.apple.backupd-auto and check StartInterval but the property is 21600.
  Does anyone have an idea or suggestion?

  make sure that the permissions on the launch daemon are correct.
  run
  sudo chmod 644 /System/Library/LaunchDaemons/com.apple.backupd-auto.plist
  and restart.

• "Local Policies User Rights Assignment" not applying

  I bought Dell Vostro series computer with a Windows 7 Professional 64-bit OEM.
  The OS cannot apply the changed User Rights Assignment in Local Policies.
  Here is the step to re-produce the problem:
  1. Launch "cmd"
  2. Type "date 2014-06-20" in the command prompt. (i.e. try to change the date)
  3. A error shown "A required privilege is not held by the client."
  4. I go to "Control Panel > Administrative Tools > Local Security Policy".
  5. I open "Local Policies > User Rights Assignment", and add "Everyone" to "Change the system time" and "Change the time zone"
  6. Restart the computer
  7. Launch "cmd" and type "date 2014-06-20", the same error message shown. That is, the policy is not applied.
  Note: If I launch the cmd as administrator, no error will show.
  I am not familiar with Local Security Policy and related and I tried to search online but not thing found (maybe I didn't know how to apply).
  I would like to know how to resolve this problem from you. If you need more information like the log in Event Log, please tell me which one you need.
  Thanks so much!

  Hi,
  I tested this issue, after adding everyone to the group you mentioned above, I can successfully change the system time as a standard user. and the format is date 06-20-2014
  I suggest you logon as admin, and manually check the policy, see whether it has been updated.
  Yolanda Zhu
  TechNet Community Support

• Archive directory user rights?

  Hi all: I recently migrated our GW2014 SP1 server over to new hardware. The migration went smooth and our domain and postoffice seem happy. My users are reporting an 8201 error when starting up their client and I have traced it to a user rights issue with our archive folder on the server. I have given full rights to everyone as a temp measure, but I want to get the proper rights set up. BTW, the archive directory is on an NSS volume.
  So, what are the proper user rights to the archive directory? Thanks much, Chris.

  Hi Chris,
  They need Read, Write, File Scan, Create, Erase, Modify, Delete - all except Access Control and Supervisor.
  Hope that helps.
  Cheers,

• E-mail "Inbox" of old messages have all changed to text only after Norton scan?

  Hi,
  Last night I did a full Norton scan of my computer and this morning found that all the "Inbox" messages "prior" to the time of the scan seem to have been changed to text only with various other codes and symbols but without the correct text formatting and any graphics. With these old Inbox messages the address and subject lines are also now empty as is the "To:" and "From:" In fact the whole space where these should appear now simply says "subject". There are also no graphics in the actual message area merely text and symbols. This has only occurred on my POP3 server Inbox. It hasn't happened to my other e-mail address which is an IMAP server. Nor has it affected the "Sent" nor "Archive" message boxes for the POP3 server system. Any new incoming e-mails I've just received this morning and post the Norton scan are ok however.
  Is there someway I can recover or re-configure these old Inbox messages from what appear to be text to presumably HTML with the correct subject lines and text/graphics formatting which seems to have been lost since the Norton scan?
  Many thanks.
  Bob

  Did Norton find anything in the Thunderbird profile. It sounds to me like it has quarantined your entire inbox, something Norton is very good at and the people and Norton are totally unapologetic for. Their attitude is they saved you, you should be grateful that they deleted a great load of your mail.
  Personally I voted with my feet. No Symantec product get installed on any device I have anything to so with. I consider them as bad as the virus they are supposedly protecting me from.

• Change user type with terminal

  Hi all,
  I am trying to find the commands' to be able to change a 'Service' user from an Admin user to a standard user. I have found ways to do it via single user mode however i would like to be able to do this with terminal as i will be using remote desktop to change all the service users in my company. Any help would be great
  Cheers

  I can't take full credit for this. I found it at:
  http://farbflash.de/cgi-bin/blosxom.cgi/?find=snippets
  I did, however, know the command to look for.
  The commands necessary to create an admin user are as follows:
  sudo -s
  niutil -create . /users/username
  niutil -createprop . /users/username passwd \"\"
  niutil -createprop . /users/username home /Users/username
  niutil -createprop . /users/username shell /bin/tcsh
  niutil -createprop . /users/username uid 520
  niutil -createprop . /users/username gid 20
  niutil -createprop . /users/username realname \"First Last\" - if this property is not created, the user won't appear in the loginwindow!
  niutil -appendprop . /groups/admin users username - only for admin users!
  These below are optional:
  niutil -createprop . /users/username hint \"password hint\"
  niutil -createprop . /users/username writerspassword username
  niutil -createprop . /users/username writershint \"\"
  niutil -createprop . /users/username writerspicture username
  niutil -createprop . /users/username sharedDir Public
  exit
  There needs to be a valid home directory, shell, and/or SharedDir for the user. A home directory can be created as easily as:
  sudo mkdir /Users/username
  sudo chown username:staff /Users/username
  Or if you want the default OS X user directory structure:
  sudo cp -rp /System/Library/User Template/English.lproj /Users/username
  sudo chown -R username:staff /Users/username
  (/System/Library/User Template also has other localized language templates)
  Additional info:
  To change an admin user back to an ordinary user:
  sudo niutil -destroyval . /groups/admin users username
  Be careful to leave at least one accessible admin user, otherwise you will lock yourself out of your machine.
  after changing netinfo:
  sudo niutil -resync .
  log out and in the user you changed.

• Hey,i forgot my login password,so i changed the password by using terminal command(reset password).now i have new user name with new password,but i can't find  my data which i have saved on mac.please help me out in this matter.

  hey,i forgot my login password,so i changed the password by using terminal command(reset password).now i have new user name with new password,
  but i can't find  my data which i have saved on mac.the storage is showing data used and free space on the disk
  please help me out in this matter.

  How did you change your user name?
  resetpassword wouldn't have done it. If you managed to create a new user, then your data is still in the old account.

• I created a form with Single Choice fields, 4 days with times listed. But, I want the user to only be able to choose one time, and the time chosen to be unavailable for other users. How do I do this?

  I created a form with Single Choice fields, 4 days with times listed. But, I want the user to only be able to choose one time, and the time chosen to be unavailable for other users. How do I do this? I have 4 blocks of Single Choice fields in order for the summary page to give me each day in the final report. But, I need the user to be able to make a selection of any day and time and that apointment to no longer be available to future users when they log in. Plus, when the user clicks on the time, they are unable to change their mind and choose another time. Here's the link if you want to see what I'm talking about: 2015-2016 Workload Apportionment Review

  I'm afraid not.    It's not rocket science but you need to do some coding. 
  You'll need to find a script (php) and save it to your local site folder.  Then reference the script in your form's action attribute like so.
       <form action="path/form-to-email-script.php" >
  The input fields in your HTML form need to exactly match the script variables. 
  I'm  assuming you're hosted on a Linux server which uses PHP code.  Linux servers are also case sensitive, so upper case names are not the same as lower case names.  It's usually best to use all lower case names in your form and script to avoid confusion.
  Related Links:
  Formm@ailer PHP from DB Masters
  http://dbmasters.net/index.php?id=4
  Tectite
  http://www.tectite.com/formmailpage.php
  If this is all a bit beyond your skill set, look at:
  Wufoo.com (on-line form service)
  http://wufoo.com/
  Nancy O.