Diskutil option to mount under a specific user/UID

Similar Messages

• Brief report of about 2 months for the sqls run under a specific user ?

  Hi,
  Is there a way i can get the brief report of about 2 months for the sqls run under a specific user in Oracle 11g.
  thanks in advance

  913410 wrote:
  Yes,
  auditing is enabled
  SQL> show parameter audit;
  NAME                                 TYPE        VALUE
  audit_file_dest                      string      /u01/app/oracle/admin/PRCMTDB/
  adump
  audit_sys_operations                 boolean     FALSE
  audit_syslog_level                   string
  audit_trail                          string      DBthen how to get the informationabove is necessary, but not SUFFICIENT
  default Oracle behavior is that NO specific actions are audited.
  You would have had to manually enable AUDIT for all SQL statement by single user

• Runtime.exec() under a specific user account ???

  Hi there,
  I cann't figure out how to run a script on Unix under a specific user account using the Runtime.exec(). Currently whoever run the java program, the script is ran under that user account.
  The code is like:
  public class javarun {
  public static void main(String[] arg) {
  String str = "myunixscript";
  // check the arg[1] to decide the appropriate environment.
  Runtime r = Runtime.getRuntime();
  try {
  Process pr = r.exec(str);
  pr.waitFor();
  int exitstatus = pr.exitValue();
  } catch (...) {...}
  We have two user accounts: unixusr1 and unixusr2. Now I need to have unixusr1 run the java program ( ie. unixusr1$ java javarun), while the "myunixscript" be executed under unixusr2. One further step is to the unix account name as a parameter so the unixscript could be run under different account.
  Any help will be highly appreciated. Thanks.
  Edward.

  I'm not sure if I have a solution, but here are some questions:
  a) have you tried writing additional input to the OutputStream of the process? Although I have not tried it, I would imagine that Process.getOutputStream() exists for commands that require the invoking resource to send additional input to the process- like an su command that requires a password check.
  b) can you just write a shell script that takes the needed information as an argument. That is, write a shell script that takes the username and password as an argument and then you can use Runtime like,
  Runtime.exec("myScript", new String[] { "hisId", "hisPasswd" });Obviously, you would need to think through the security concerns of such a script, but, if it complies with the security structure of your environment, it might allow you to avoid the problem by using the shell script to invoke the destination command with the proper UID and password, rather then using the JVM to invoke it. Basically, the script becomes a proxy for the JVM to invoke that command.

• "Resend" option is not working for specific user. "The Operation Failed" Exchange 2010 Outlook 2013

  Hi Everybody. I have a weird one for you.
  I have a user that gets an "operation failed" message whenever trying to use the "resend" option on any email (It's the one right under recall). I had tested up and down on her machine. Exchange 2010 Outlook 2013
  Ran in safe mode, recreated her profile, disabled virus scanning, repaired office. (weird, the font just changed sizes on me)
  After all of this I tested on other computers, other users seem to be able to "resend" just fine. However her account does not work on any computer I try, internal or external to the network.
  It looks more like a profile issue.
  She's a very active archivist, so she only has 486MB of space used by her mailbox.
  It's well under quota.
  It's been really puzzling me.
  MCSE 2003, Exchange. MCTS Vista, 7. Administrator of awful, neglected website http://timssims.net

  Hi Timssims,
  Since there is only one user in the org has this issue, it seems an issue on the Outlook client side.
  I suggest asking Outlook Forum for help so that we can get more professional suggestions.
  For your convenience:
  https://social.technet.microsoft.com/Forums/office/en-US/home?forum=outlook
  However I also have some suggestions for your reference:
  1. If this issue occur on Cached Mode, I suggest turning to Online Mode for testing.
  2. Please also paste the detailed error message if "operation failed" is not the
  complete information.
  3. If still not works after perform operations above (including suggestions from Outlook Forum), I suggest re-creating a new mailbox for the specific user just as Martin suggested.
  Thanks
  Mavis
  Mavis Huang
  TechNet Community Support

• [SOLVED]trying to mount disk so all users can read write

  I'm trying to mount my hard drive to /mnt/2TB automatically at startup.  My /etc/fstab looks like this...
  /dev/sda2 / ext4 errors=remount-ro 0 1
  /dev/sdb1 /mnt/2TB ntfs auto,exec,rw,users,uid=1000 0 0
  ls / shows...
  drwxrwxrwx 3 root root 4096 Jun 30 20:09 mnt
  ls /mnt shows...
  drwxrwxrwx 1 root root 4096 Jun 20 21:21 2TB
  When I restart the disk mounts fine but I cannot write anything to disk.  I want to mount this disk so that anyone can read, write, and execute on it.  I specified these options in my fstab.  What options am I missing?
  EDIT:
  I figured it out.  I had to install ntfs-3g.  Once I did that I changed my fstab to this...
  /dev/sda2 / ext4 errors=remount-ro 0 1
  /dev/sdb1 /mnt/2TB ntfs-3g defaults,uid=1000 0 0
  Then I changed /mnt permissions to ...
  drwxr-xr-x 3 root root 4096 Jun 30 20:09 mnt
  Then I changed /mnt/2TB permissions to...
  drwxrwxrwx 1 necbot users 4096 Jun 20 21:21 2TB
  Works great!
  Last edited by necbot (2014-07-02 00:07:43)

  I ran across this in the ntfs-3g manual which might be of some interest. It appears that adding "permissions" to the mount options for ntfs-3g might accomplish roughly what you want, but you may have to perform some work to get it operational. Likewise, the Windows ACL may interfere and a quick glance seems to me to suggest that you might have to tweak things from Windows to get the permissions working well.
  I personally have all of my Windows partitions mounted under /windows, but I can see why that isn't an ideal solution if you're dabbling in Arch or have things you want to more easily share in one direction.
  Hope this helps somewhat even though you've already marked the topic as solved.

• Hidden shares for specific users

  Hi,
  I've been computer admin for years but please forgive my ignorance because I'm new to Mac Server. I am using 10.5.6 server on a PPC dual G5. All clients are 10.5.6.
  I am trying to setup hidden network folders that only specific users can access.
  On a local slave drive I have created share points within ServerAdmin. One of these is a folder called "NetUserStorage" and within this folder I have a folder called TestUserFolder. I did NOT set up NetUserStorage as a sharepoint. I did set up a TestUserFolder as a sharepoint via only SMB (guest access off) and made the TestUser (which i created in WGM) have Full Control, localadmin has RW, Others has none.
  FYI, the server doesn't do DNS, DHCP, or anything, it's just a file server.
  The client is only bound to server via the application "Directory", and I log into the client as a local user. When I connect to server and enter the correct path (smb://IP.x.x.x/Volumes/HD/NetUserStorage/TestUserFolder/) with the correct TestUser and password, I get an error message that says "You do not have permission to access this server." Yet I can connect to the server as guest and access all the public shares fine.
  Could anyone offer some advice? I'm reading and learning as quickly as possible and have already done some great stuff but I can't seem to do this simple task.
  Thanks.

  Steve thank you for helping me. You've helped me answer this question but I now have another (of course right?).
  I finally got it to work by typing just the IP of MyMacServer and then choosing the share. Previously, I was typing the whole path to the hidden share I was trying to mount (smb://IP.ip.ip.ip/Volumes/HD/HiddenFOlder/TestUserStorage/). Now, when I simply type smb://IP and hit enter, authenticate as TestUser, I am presented with shares to choose from including the hidden folder I have been trying to mount. I can also confirm when connecting as a different user that the hidden TestUserStorage folder is not an option to mount, and is not even listed - which of course is what I want.
  So now I have a question about logging into the client computer using network accounts.
  On the client computer, I had been logging into a local account, LocalUser. I bound the client computer to the server using "Directory Utility" and the TestUser account (TestUser is a network account found in OD on MyMacServer). I have software update looking to the MyMacServer and pulling updates from it, and at the logon screen on the client computer, I can select the "other" account and login as MyNetAdminUser (a user located in OD as TestUser is), but when trying to logon as TestUser I am not able to.
  Thank you for all your help so far, hate to be such a noob, but got any ideas on why I can't login to the local client using the TestUser account?
  Thanks again.

• Workflow starts only when initiated by specific user

  hello,
  Workflow starts only when initiated by specific user...need to get started  who ever initiates it....
  any help would be appreciated !!!
  Thanks regards, Vignesh.

  Hi,
  Workflow start option:
  Mannually started
  Starts when item created
  Strarts when item changed
  please check which one of start option is set and also check whether selected "Require list mange permission" under mannual start option,if so uncheck or add users to have that permission
  Let me know if you need help
  Whenever you see a reply and if you think is helpful, click "Alternate TextVote As Helpful"! And whenever you see a reply being an answer to the question of the thread, click "Alternate TextMark As Answer

• [solved] Permissions issue - can't mount usb device as user, just root

  In my last post I learned how to mount a secondary HDD from the command line.  Problem is I did it as root. Now I have xfce4 running and I need mount permissions as user.
  Here's my fstab:
  [dennis@archlinux media]$ cat /etc/fstab
  # /etc/fstab: static file system information
  # <file system> <dir> <type> <options> <dump> <pass>
  devpts /dev/pts devpts defaults 0 0
  shm /dev/shm tmpfs nodev,nosuid 0 0
  #/dev/cdrom /media/cd auto ro,user,noauto,unhide 0 0
  #/dev/dvd /media/dvd auto ro,user,noauto,unhide 0 0
  #/dev/fd0 /media/fl auto user,noauto 0 0
  /dev/sdb /media/disk0 ext4 rw,user,noauto 0 0
  /dev/sdb1 /media/disk1 ext4 rw,user,noauto 0 0
  /dev/sdb3 /media/disk3 ext4 rw.user,noauto 0 0
  UUID=1f813152-615e-41a1-b3e7-ce2b5b6836a5 / ext4 defaults 0 1
  UUID=aba18f0f-5f37-4ab0-8241-5a271dc3dddb swap swap defaults 0 0
  UUID=c4332450-df9e-4571-8256-8e1b10b4d162 /home ext4 defaults 0 1
  UUID=f0a6eca0-9668-454b-b444-371566663510 /boot ext2 defaults 0 1
  [dennis@archlinux media]$
  ....and these are the system messages I got when I plugged the device:
  Unable to mount "74G Volume":
  mount: only root can mount /dev/sdb3 on /media/disk3
  Unable to mount "4G Volume":
  mount: must be superuser to use mount
  What do I do here?
  Last edited by dennola4 (2010-06-28 00:56:51)

  Karol:
  # Cmnd alias specification
  # Defaults specification
  # Runas alias specification
  # User privilege specification
  root ALL=(ALL) ALL
  dennis ALL=(ALL) ALL
  %users ALL=(ALL) NOPASSWD: /usr/sbin/pppd
  %users ALL=(ALL) NOPASSWD: /usr/sbin/hibernate
  %users ALL=(ALL) NOPASSWD: /usr/sbin/standby
  # Uncomment to allow people in group wheel to run all commands
  %wheel ALL=(ALL) ALL
  # Same thing without a password
  %wheel ALL=(ALL) NOPASSWD: ALL
  # Samples
  # %users ALL=/sbin/mount /cdrom,/sbin/umount /cdrom
  # %users localhost=/sbin/shutdown -h now
  Mr. Elendig:
  Why not use automounting instead?
  To install Arch packages I needed an Internet connection, which required use of a Sierra Wireless card, which required chatscripts stored on another filesystem.  In my first Arch forum post ever, the one preceding this one, I learned to mount a device by creating a mountpoint in /media then invoking #mount.  After installing all packages and creating a user name, I signed on with xfce4 and plugged in the usb device again.  It didn't mount.  So I did it manually using sudo.  Since that worked I had the idea that adding the mountpoints to /etc/fstab would be useful, so I did.  When that didn't work I decided to just ask for help.
  So sure, I'm down for some automounting action.  How do I do it?

• Can only mount certain drivers as user (permission issue)

  # /etc/fstab: static file system information.
  # <file system> <mount point> <type> <options> <dump> <pass>
  #Entry for /dev/sda3 :
  UUID=9d30da3d-1705-4d6e-8925-d54368a6ba83 / ext4 rw,relatime,noatime,discard,data=ordered 0 1
  #Entry for /dev/sda4 :
  UUID=2594-9B6A /boot vfat rw,relatime,fmask=0022,dmask=0022,codepage=437,iocharset=iso8859-1,shortname=mixed,errors=remount-ro 0 2
  #Entry for /dev/sdc1 :
  UUID=18223DAB223D8F2E /media/veePortable ntfs-3g rw,user,users,sync,exec,dev,suid,noatime,nodiratime,noauto,uid=1000,gid=100,umask=000 0 0
  #Entry for /dev/sdd1 :
  UUID=249E57549E571D9C /media/veeStorage ntfs-3g rw,user,users,sync,exec,dev,suid,noatime,nodiratime,noauto,uid=1000,gid=100,umask=000 0 0
  #Entry for /dev/sda2 :
  UUID=369A97239A96DEA5 /media/veeSSD ntfs-3g rw,user,users,sync,exec,dev,suid,noatime,nodiratime,noauto,uid=1000,gid=100,umask=000 0 0
  # veeBackup /dev/sdb1 :
  UUID=d91fd6de-3a65-4a78-961b-ea53bf8e1542 /media/veeBackup ext4 rw,user,users,sync,exec,dev,suid,noatime,nodiratime,noauto,uid=1000,gid=100,umask=000 0 0
  # veeData /dev/sdb2 :
  UUID=e7d0ed28-a65c-44ea-9ce1-529c4071afe5 /media/veeData ext4 rw,user,users,sync,exec,dev,suid,noatime,nodiratime,noauto,uid=1000,gid=100,umask=000 0 0
  This is my /etc/fstab file.
  I can successfully mount using Thunar "veeStorage" and "veePortable", which are external USB drives.
  When trying to mount "veeSSD", "veeBackup" or "veeData", Thunar tells me I don't have the required permissions.
  Doing "sudo mount --all" doesn't mount them. I have to manually mount them with
  sudo mount /dev/sdb1 /media/veeBackup
  sudo mount /dev/sdb2 /media/veeData
  sudo mount /dev/sda2 /media/veeSSD
  fdisk -l : http://pastie.org/8102730
  Blkid
  /dev/sda1: LABEL="System Reserved" UUID="18F8916FF8914BBE" TYPE="ntfs"
  /dev/sda2: LABEL="veeSSD" UUID="369A97239A96DEA5" TYPE="ntfs"
  /dev/sda3: UUID="9d30da3d-1705-4d6e-8925-d54368a6ba83" TYPE="ext4"
  /dev/sda4: UUID="2594-9B6A" TYPE="vfat"
  /dev/sdb1: LABEL="veeBackup" UUID="d91fd6de-3a65-4a78-961b-ea53bf8e1542" TYPE="ext4"
  /dev/sdb2: LABEL="veeData" UUID="e7d0ed28-a65c-44ea-9ce1-529c4071afe5" TYPE="ext4"
  /dev/sdc1: LABEL="veePortable" UUID="18223DAB223D8F2E" TYPE="ntfs"
  /dev/sdd1: LABEL="veeStorage" UUID="249E57549E571D9C" TYPE="ntfs"

  Karol:
  # Cmnd alias specification
  # Defaults specification
  # Runas alias specification
  # User privilege specification
  root ALL=(ALL) ALL
  dennis ALL=(ALL) ALL
  %users ALL=(ALL) NOPASSWD: /usr/sbin/pppd
  %users ALL=(ALL) NOPASSWD: /usr/sbin/hibernate
  %users ALL=(ALL) NOPASSWD: /usr/sbin/standby
  # Uncomment to allow people in group wheel to run all commands
  %wheel ALL=(ALL) ALL
  # Same thing without a password
  %wheel ALL=(ALL) NOPASSWD: ALL
  # Samples
  # %users ALL=/sbin/mount /cdrom,/sbin/umount /cdrom
  # %users localhost=/sbin/shutdown -h now
  Mr. Elendig:
  Why not use automounting instead?
  To install Arch packages I needed an Internet connection, which required use of a Sierra Wireless card, which required chatscripts stored on another filesystem.  In my first Arch forum post ever, the one preceding this one, I learned to mount a device by creating a mountpoint in /media then invoking #mount.  After installing all packages and creating a user name, I signed on with xfce4 and plugged in the usb device again.  It didn't mount.  So I did it manually using sudo.  Since that worked I had the idea that adding the mountpoints to /etc/fstab would be useful, so I did.  When that didn't work I decided to just ask for help.
  So sure, I'm down for some automounting action.  How do I do it?

• Mount network volume: different users same credentials, see different shares

  A set of network volumes on a NAS need to periodically be backed up to a local USB disk. Manually, I can mount most shares (from a Finder window). In a shell script I can list all files due (find) and use that list for backing up to a local USB volume (cpio). So far so good. However, I need to mount these network volumes first. The mount command doesn't seem to work for me.
  How do I mount a network volume in a shell script?
  Also I noticed that if under fast user switching user A logs in with credentials uName and uPassword, the NAS shows 6 shares to choose from. When user B on the same machine logs in with the same credentials uName and uPassword, only 5 shares are visible and one is not shown. It looks as if the credentials do not uniquely determine the volumes offered for mounting. Also, when user B mounts a share, it appears to be owned by user A (who is logged in but has not mounted any share on the NAS) rather than owned by B or by uName...
  How do I mount this volume as user uName rather than A or B?
  How can one uniquely determine the identity of the volume? Network volumes don't show UUIDs and the name given in the /Volume/ folder can change, as is discussed in message 11871367.

  eljonco wrote:
  I just checked: after a reboot, user A logs in (automatic login enabled), user A logs out, user B logs in, ls -a /Volumes only shows local HD and a USB HD. No network mounts there.
  In the finder window, the NAS shows up on the left. Clicking it and entering credentials uName, uPassword, a list of five, not 6, items is offered for mounting. So your options 1 and 4 are then ruled out, unless an alias made by user A and copied to user B's home folder would still link to user A's mounting options.
  Actually, only option 1 is ruled out. That Finder list is simply not reliable. It is likely cached somewhere and could be restored by deleting some hidden preference file. It regularly causes people to freak out when they see some sharepoint listed on a network that they have long since left.
  If you did Go > Connect to Server in the Finder and typed in the location, you could still create an alias.
  Once mounted one of 5 shares as uName with uPassword, an ls -al /Volumes shows the local drives and
  drwx------@ 11 B staff <date> sharename
  and all folders in sharename also show B:staff as user:group. I find that strange, as I did not log in to the share with credentials B, but with credentials uName. Anyhow.
  The uName user is for the network share. When MacOS X mounts that, it gives it permissions appropriate for the user who did the mounting. If you did an NFS mount as root, the server would handle permissions via UNIX uid and gid. I'm really not familiar with the details of AFP.
  As I read in a post about autoFS that 'cd /Volume/theHiddenShare' should magically mount that share, I gave it a shot. Alas, '/Volumes/theHiddenShare: No such file or directory'. Same long shot in the dark in the 'Go/Connect to' dialog gave 'The folder cannot be found'. Not surprisingly, I suppose.
  Yes. That has to be setup
  Here is what I've done to my /etc/auto_home:
  # Automounter map for /home
  #+auto_home     # Use directory service
  # Get /home records synthesized from user records
  #+/usr/libexec/od_user_homes
  myserver.org -allow_other,reconnect,fstype=sshfs [email protected]:/home/me_remote
  I'm not on a big network, so I've disabled the system functionality by commenting out "+auto_home" and "+/usr/libexec/od_user_homes". Now, the system doesn't manage /home and I am free to do with it what I want. This will mount the path "/home/myserver.org" connected to the "me_remote" user on "myserver.org". I'm using the funky MacFUSE sshfs filesystem. Your AFP file system should work much better. Your line would look something like this:
  drive5 -fstype=afp uUser@MyLocalServer:/theHiddenShare
  Run "automount -vc" to reset your automount system.
  Next use Finder Go > Connect to Server and type in "afp://uUser@MyLocalServer:/theHiddenShare".
  You want to mount the drive once so that you can store uPassword in your keychain.
  Now unmount the drive.
  The Finder mounts all go into /Volumes and, as you have discovered, can get themselves confused. This automount will be at "/home/drive5". All you have to do is enter that folder in the Finder and it will be automatically mounted. If you haven't used it for a while, it will be unmounted automatically.
  You may have to play around with this a little. I don't have any network AFP share that I need to mount on a regular basis, so those parameters may need to be adjusted somewhat.

• Draft Documents View is empty for a specific user

  Hi,
  For a specific user, when he goes on the Document Draft Reports, the Sales Document sub-form is empty. Meaning that when he ticks the "Sales Documents" option, the boxes to choose specific Sales Document does not exist (e.g. Sales Quotation, Sales Orders etc.). This happens no matter what are the other options (e.g Open Only or User Option).
  The other lists (Purchasing and Stock) are working properly. Again, all the other users do not experience the same issue as the form is working properly
  The installation is on 2007A SP01
  Any ideas?
  Thanks in advance
  Gerasimos

  Hi Gerasimos.......
  I'm sure this is a Bug in your system. If you have any of the adons then please Disconnect it and also try to create new Super User and give him license and then check with this new user for the same output.......
  Else I'm afraid you need to raise a support ticket to SAP.......
  Regards,
  Rahul

• How to apply Software Restriction policy for specific user in local group policy object ?

  I am working on implementing user based software restriction policy programmatically for local group policy object.
  If i create a policy through Domain Controller,i do have option for software restriction policy in user configuration but in local group policy editor i don't have option for that.
  When i look for the changes made by policy applied from Domain Controller in registry, they modifies registry values for specific users on path HKEY_USERS\(SID of User)\Softwares\Policies\Microsoft\Windows\Safer\Codeidentifiers
  They also have registry.pol stored in SYSvol folder in Domain Controller. When i make the same changes in registry to block any other application, application is getting blocked.
  I achieved what i wanted but is it right to modify registry values ?  
  PS:- I am using Igrouppolicyobject API

  I achieved what I wanted but is it right to modify registry values ?
  You also can modify a registry programmatically based policy. Check this:
  http://blogs.msdn.com/b/dsadsi/archive/2009/07/23/working-with-group-policy-objects-programmatically-simple-c-example-illustrating-how-to-modify-a-registry-based-policy.aspx
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• How can I be certain the contact list in my iPod touch updates my computer Outlook contact list when I sync and not go the other way? The options in iTunes are not specific enough.

  How can I be certain the contact list in my iPod touch updates my computer Outlook contact list when I sync and not go the other way? The options in iTunes are not specific enough. In other words, I want to replace the information in my computer Outlook contact list with the data from my iPod touch. 

  How is your iPod configured to sync music from your iTunes library?  In other words, what options and configurations do you have enabled from under the iPod's Summary and Music configuration panes in iTunes?
  B-rock

• How can I set a specific user log on neme to a specific machine

  Greeting,
  I have a question : 
  How can I set a specific user log on name to a specific machine.
  e.g. 
  Only User.A can log on to PC.A and the other can not.
  Base On :
  Windows Server 2003
  Active Directory Version : 5.2.3790.1812

  Technically we're both right.  This depends on what scenario you're setting this up.
  1)  If you want to say only this person can log on to this machine, and it's not an enterprise solution (meaning you have a handful of computers you want restricted, not all computers) then do something like Yan Li has recommended.  However, I
  do not recommend using any DENY LOCAL LOGON user rights.  In this case, you would have to deny everyone except 'User A' and your Administrators.  If you put a user in ALLOW LOCAL LOGON and DENY LOCAL LOGON, then DENY wins and no one logs in.  Instead,
  you should remove all the settings from ALLOW LOCAL LOGON and add only User A and administrators.
  2) If this is an enterprise solution, use the LOG ON TO option I mentioned before.  Managing user right assignments per machine is very difficult and isn't a practical way to do it on a large scale.  If every user in your domain is assigned a computer
  that they can use, only that user can use that machine and that machine will effectively only allow that user.  For this to work, EVERY user must be restricted to a workstation, if no setting is present, then that user can log on anywhere.  This
  is my preferred solution still.
  Like I said, it depends on your situation to which route is better.  I hope this helps and is clear and easy to understand.
  - If you have my posts to be helpful, or the answer, please mark them appropriately.  Thank you.
  Chris Ream

• List View Filter - I want to create List View based on a specific user

  I want to create a List View Filter based on specified user ID. I dont want to specify the [Me] for filtering the view based in current logged in User.
  I want the view to be based on specific user ID for Ex: "AD\JohnDoe"
  Thanks
  Nate

  The People/Group Picker field has several options for how the name is displayed. For example you can set it to be the friendly name or the account name. When you create your View Filter, make sure that you are using the same format as the field's display
  type.
  Dimitri Ayrapetov (MCSE: SharePoint)