Run cmdlets from non AD users? Is it possible?

Similar Messages

• Run exchange cmdlets from non AD users? Is it possible?

  Hello!
  I call powershell script from local user and obviously get access error. For example I need to get this info from AD:
  (Get-MailBox -database DB2 -resultsize unlimited | Get-MailBoxStatistics | Add-Member -MemberType ScriptProperty -Name
  TotalItemSizeinGB -Value {$this.totalitemsize.value.ToGB()} -PassThru | measure-object -property TotalItemSizeinGB -sum).Sum
  I can use “-credential $Cred” only with Get-Mailbox. What about the others  cmdlets?
  Anyway, there is a huge similar cmdlets giving access error if I don’t use AD user with proper permissions.
  I need this for monitoring system which works from LocalSystem account.
  Could somebody advice please?

  Hi,
  The account you use to run the cmdlet above should be a member of Organization Management role group and Recipient Management role group. What's more, the role group members should be AD users.
  For your reference:
  Mailbox Permissions
  https://technet.microsoft.com/en-us/library/dd638132(v=exchg.141).aspx
  Hope this can be helpful to you.
  Best regards,
  Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact [email protected]
  Amy Wang
  TechNet Community Support

• If only using wifi, will I still receive text messages and calls from non iPhone users?

  If only using wifi (turning off Cellular Data) will I still receive text messages and calls from non iPhone users?

  If you have cell service with a text plan, yes.

• Unable to send or receive sms from non iPhone users

  I am unable to send or receive text messages from non iPhone users.
  I can get and send MMS but no SMS... I have an iPhone 6 +

  Hey pbaldridge,
  Sorry to hear you are having issues with the messaging on your iPhone. If you continue to have issues sending SMS messages to non-iPhone users from your iPhone, you may find the information and troubleshooting steps outlined in the following article helpful:
  If you can't send or receive messages on your iPhone, iPad, or iPod touch - Apple Support
  Cheers,
  - Brenden

• Run Apache as non Oracle user

  Hi,
  I configured Apache on 10gAS to run as a non-oracle user.
  I have hit this road block.
  # tail -f HTTP_Server~1
  07/10/06 14:41:36 Start process
  apachectl is not owned by this userAfter much investigation. The following hidden file is causing the problem.
  $ORACLE_HOME/Apache/Apache/bin/.apachectlThis is the file permission
  # ls -ltr .apachectl
  -rwsr-s-wx   1 oracle     dba          32768 Aug  3  2005 .apachectlLooks like file ".apachectl" is not allowing Apache to run as non- oracle user.
  I changed the onwership of ".apachectl" to the user I wish to execute Apache server as. Then I got this error:
  07/10/06 15:35:06 Start process
  /opt/oracle/app/oracle/product/10gAS/Apache/Apache/bin/.apachectl: Permission deniedAny help here?
  Thanks

  You could also make the user that starts the Apache a member of the current group. You will be capable of starting the apchaectl. Furthermore you should indeed not use apchectl or .apachectl directly.
  You could better use the standalone Apache by Oracle or install in a different ORACLE_HOME the OHS with its own opmn - owner by this specific user.
  cu
  Andreas

• No texts from non-iphone users

  I can't receive text messages from non-iphone users, but they can receive my messages.  I can get their phone calls.  Can anyone help me out?  This started later today. 

  Go to Settings>Messages and then make sure that Send as SMS, AND MMS Messaging is on. Some times it helps to have cellular data on as well. If this doesn't work, and it most likely is is a service problem. Contact them Immedality to get this fixed.

• Why cant i send or receive picture messages to and from non iphone users?

  i have an iphone 4 and i cant send picture messages or receive them from non iphone users. what do i need to do?

  These headings should appear (in order) when you go to Settings > Messages:
  iMessage
  Send Read Receipts
  Send as SMS (the one I asked you to turn on in most recently)
  Send & Receive
  MMS Messaging (the one I asked you to turn on in the first post)
  Group Mesaging
  Show Subject Field
  Character Count
  Hopefully this is what you see.  Otherwise, please post a screen shot.

• Why can't my iPhone 5 send or receive photos from non iPhone users?

  Why can't my iPhone 5 send or receive photos from non iPhone users?

  Hello GoldenStarZ,
  Thanks for using Apple Support Communities.
  From your post I see that you're unable to send picture messages to non-iOS devices.  These messages are called MMS, and in order to troubleshoot the issue please follow the steps in the article below.
  If you can't send or receive messages on your iPhone, iPad, or iPod touch - Apple Support
  Take care,
  Alex H.

• Can't receive SMS texts from non-iPhone users

  My phone suddenly stopped letting me receive texts from non iPhone users yesterday. Since then, I have powered my phone on and off, reset the network, and power cycle. My mother has been in the hospital and I have to be here with her all day. I have no time to go to a verizon store. I've only had the phone a week and I'm really disappointed with this. Seeing my mom is in the hospital, I really need this to be working, but I'd don't even know of something else to try.

      Ktoole, I can understand how frustrating this could be. How long has this been an issue? Have you ever been able to receive texts from non-iPhone users? Do you have iMessage on or off? Have you tried to restore the phone through iTunes?
  SammuelP
  VZW Support

• Not receiving texts from non-iOS users

  I upgraded to iOS7 and am not receiving text messages from non-iOS users. Unlike the iOS bug reported in the news which affects imessage, my phone seems not to be getting or sending texts to anyone on Android or Blackberry.
  I tried rebooting the phone a few times and reset the network settings, the problem persists.
  Is there a fix for this?

  http://support.apple.com/kb/ts2755

• Secure HR info from non-HR users

  Gurus,
  I am trying to secure HR info/tables from non-HR users.  For example, non-HR users will be users that have access to se16, se80, se38, se11, sm30, sm31, sq01, and sqvi in Production.  Of course users should not have these tcodes in PRD, but they are so I am trying to lock it down.  Beside this, does anyone know others way in which users can access to HR info/tables?
  Thanks in advance,
  Allen

  Allen,
  Here are a few more to consider:
  SA38, sap back doors (different depending on version), security regarding RFC's from non prod boxes to production, HR tcode access ie PA20, HR objects such as P_ORGIN, remove debug w/ replace, HR print spools and HR reports. 
  Cheers,
  Ben

• IPhone6 is not sending or receiving texts from non-Apple users, except when in Group texts. I've tried the various fixes on the main support page to no avail. Any ideas?

  iPhone6 is not sending or receiving texts from non-Apple users, except when in Group texts. I've tried the various fixes on the main support page to no avail. Any ideas?

  Have you contacted your carrier to make sure there's no issues with your account?
  ~Lyssa

• "Unable to check revocation" error while checking CDP from non-domain user account

  Hi!
  I use 3-tier PKI infrastructure:
  Stand-alone offline Root CA: RootCA;
  Stand-alone offline Intermediate subordinate CA: SubCA;
  Enterprise CA: EntSubCA.
  In certificate we have three CDP point for CRL check:
  ldap:///, http:// and file://
  I have Windows 2008 R2 server joined to domain.
  I use command certutil –verify –urlfetch <filename.cer> >check.txt for revocation checking of certificate.
  When I use domain user account for revocation checking, all OK.
  I have access to any CDP and all fine.
  But when i use local server user account, I haven't access to ldap:/// and process failed although all other links is OK.
  My question is "why check fail with non-domain user accout while other CDP point succesfully verifed"?
  Here is the logfile from local user:
  Issuer:
  CN=EntSubCA
  DC=DED
  DC=ROOT
  Subject:
  CN=servername.domain_name
  Cert Serial Number: 5a896145000300006ee2
  dwFlags = CA_VERIFY_FLAGS_ALLOW_UNTRUSTED_ROOT (0x1)
  dwFlags = CA_VERIFY_FLAGS_IGNORE_OFFLINE (0x2)
  dwFlags = CA_VERIFY_FLAGS_FULL_CHAIN_REVOCATION (0x8)
  dwFlags = CA_VERIFY_FLAGS_CONSOLE_TRACE (0x20000000)
  dwFlags = CA_VERIFY_FLAGS_DUMP_CHAIN (0x40000000)
  ChainFlags = CERT_CHAIN_REVOCATION_CHECK_CHAIN (0x20000000)
  HCCE_LOCAL_MACHINE
  CERT_CHAIN_POLICY_BASE
  -------- CERT_CHAIN_CONTEXT --------
  ChainContext.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
  ChainContext.dwErrorStatus = CERT_TRUST_REVOCATION_STATUS_UNKNOWN (0x40)
  ChainContext.dwErrorStatus = CERT_TRUST_IS_OFFLINE_REVOCATION (0x1000000)
  ChainContext.dwRevocationFreshnessTime: 5 Days, 23 Hours, 15 Minutes, 48 Seconds
  SimpleChain.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
  SimpleChain.dwErrorStatus = CERT_TRUST_REVOCATION_STATUS_UNKNOWN (0x40)
  SimpleChain.dwErrorStatus = CERT_TRUST_IS_OFFLINE_REVOCATION (0x1000000)
  SimpleChain.dwRevocationFreshnessTime: 5 Days, 23 Hours, 15 Minutes, 48 Seconds
  CertContext[0][0]: dwInfoStatus=102 dwErrorStatus=1000040
  Issuer: CN=EntSubCA, DC=DED, DC=ROOT
  NotBefore: 05.02.2015 20:03
  NotAfter: 05.02.2016 20:03
  Subject: CN=servername.domain_name
  Serial: 5a896145000300006ee2
  SubjectAltName: DNS Name=servername.domain_name
  Template: Machine
  70 e4 6b 16 05 a1 62 e3 6d 24 96 ff 44 74 ee a2 3e ce df 18
  Element.dwInfoStatus = CERT_TRUST_HAS_KEY_MATCH_ISSUER (0x2)
  Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
  Element.dwErrorStatus = CERT_TRUST_REVOCATION_STATUS_UNKNOWN (0x40)
  Element.dwErrorStatus = CERT_TRUST_IS_OFFLINE_REVOCATION (0x1000000)
  ---------------- Certificate AIA ----------------
  Failed "AIA" Time: 0
  Error retrieving URL: Logon failure: unknown user name or bad password. 0x8007052e (WIN32: 1326)
  ldap:///CN=EntSubCA,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=DED,DC=ROOT?cACertificate?base?objectClass=certificationAuthority
  Verified "Certificate (0)" Time: 0
  [1.0] file://\\ca\crl\EntSubCA.crt
  Verified "Certificate (0)" Time: 4
  [2.0] http://webserver/crl/EntSubCA.crt
  ---------------- Certificate CDP ----------------
  Failed "CDP" Time: 0
  Error retrieving URL: Logon failure: unknown user name or bad password. 0x8007052e (WIN32: 1326)
  ldap:///CN=EntSubCA,CN=ca,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=DED,DC=ROOT?certificateRevocationList?base?objectClass=cRLDistributionPoint
  Verified "Base CRL (018d)" Time: 0
  [1.0] file://\\ca\crl\EntSubCA.crl
  Failed "CDP" Time: 0
  Error retrieving URL: Logon failure: unknown user name or bad password. 0x8007052e (WIN32: 1326)
  [1.0.0] ldap:///CN=EntSubCA,CN=ca,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=DED,DC=ROOT?deltaRevocationList?base?objectClass=cRLDistributionPoint
  Old Base CRL "Delta CRL (018d)" Time: 0
  [1.0.1] file://\\ca\crl\EntSubCA.crl
  Old Base CRL "Delta CRL (018d)" Time: 4
  [1.0.2] http://webserver/crl/EntSubCA.crl
  Verified "Base CRL (018d)" Time: 4
  [2.0] http://webserver/crl/EntSubCA.crl
  Failed "CDP" Time: 0
  Error retrieving URL: Logon failure: unknown user name or bad password. 0x8007052e (WIN32: 1326)
  [2.0.0] ldap:///CN=EntSubCA,CN=ca,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=DED,DC=ROOT?deltaRevocationList?base?objectClass=cRLDistributionPoint
  Old Base CRL "Delta CRL (018d)" Time: 0
  [2.0.1] file://\\ca\crl\EntSubCA.crl
  Old Base CRL "Delta CRL (018d)" Time: 4
  [2.0.2] http://webserver/crl/EntSubCA.crl
  ---------------- Base CRL CDP ----------------
  Failed "CDP" Time: 0
  Error retrieving URL: Logon failure: unknown user name or bad password. 0x8007052e (WIN32: 1326)
  ldap:///CN=EntSubCA,CN=ca,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=DED,DC=ROOT?deltaRevocationList?base?objectClass=cRLDistributionPoint
  OK "Base CRL (018d)" Time: 0
  [1.0] file://\\ca\crl\EntSubCA.crl
  Failed "CDP" Time: 0
  Error retrieving URL: Logon failure: unknown user name or bad password. 0x8007052e (WIN32: 1326)
  [1.0.0] ldap:///CN=EntSubCA,CN=ca,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=DED,DC=ROOT?deltaRevocationList?base?objectClass=cRLDistributionPoint
  Old Base CRL "Delta CRL (018d)" Time: 0
  [1.0.1] file://\\ca\crl\EntSubCA.crl
  Old Base CRL "Delta CRL (018d)" Time: 4
  [1.0.2] http://webserver/crl/EntSubCA.crl
  OK "Base CRL (018d)" Time: 4
  [2.0] http://webserver/crl/EntSubCA.crl
  Failed "CDP" Time: 0
  Error retrieving URL: Logon failure: unknown user name or bad password. 0x8007052e (WIN32: 1326)
  [2.0.0] ldap:///CN=EntSubCA,CN=ca,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=DED,DC=ROOT?deltaRevocationList?base?objectClass=cRLDistributionPoint
  Old Base CRL "Delta CRL (018d)" Time: 0
  [2.0.1] file://\\ca\crl\EntSubCA.crl
  Old Base CRL "Delta CRL (018d)" Time: 4
  [2.0.2] http://webserver/crl/EntSubCA.crl
  ---------------- Certificate OCSP ----------------
  No URLs "None" Time: 0
  CRL 018d:
  Issuer: CN=EntSubCA, DC=DED, DC=ROOT
  33 af 4d be 0e 35 45 94 bc 8b 3f d9 c1 60 e7 0c c4 83 17 b6
  Application[0] = 1.3.6.1.5.5.7.3.2 Client Authentication
  Application[1] = 1.3.6.1.5.5.7.3.1 Server Authentication
  CertContext[0][1]: dwInfoStatus=102 dwErrorStatus=0
  Issuer: CN=SubCA
  NotBefore: 13.11.2014 19:12
  NotAfter: 13.11.2017 19:22
  Subject: CN=EntSubCA, DC=DED, DC=ROOT
  Serial: 6109015b000100000008
  Template: SubCA
  9b 04 17 9f c5 fe 52 ca a5 58 49 6c c6 18 fa db 13 b3 92 9e
  Element.dwInfoStatus = CERT_TRUST_HAS_KEY_MATCH_ISSUER (0x2)
  Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
  ---------------- Certificate AIA ----------------
  Failed "AIA" Time: 0
  Error retrieving URL: The network path was not found. 0x80070035 (WIN32: 53)
  file://\\sub_ca\CertEnroll\sub_ca_SubCA(1).crt
  Verified "Certificate (0)" Time: 0
  [1.0] file://\\ca\crl\SubCA.crt
  Verified "Certificate (0)" Time: 4
  [2.0] http://webserver/crl/SubCA.crt
  ---------------- Certificate CDP ----------------
  Verified "Base CRL (32)" Time: 0
  [0.0] file://\\ca\crl\SubCA.crl
  Verified "Base CRL (32)" Time: 4
  [1.0] http://webserver/crl/SubCA.crl
  ---------------- Base CRL CDP ----------------
  No URLs "None" Time: 0
  ---------------- Certificate OCSP ----------------
  No URLs "None" Time: 0
  CRL 32:
  Issuer: CN=SubCA
  8d a9 9d 51 65 a3 8e 77 02 22 40 57 62 70 e8 f6 c5 2e 60 1e
  CertContext[0][2]: dwInfoStatus=102 dwErrorStatus=0
  Issuer: CN=RootCA
  NotBefore: 28.05.2008 12:09
  NotAfter: 28.05.2058 12:19
  Subject: CN=SubCA
  Serial: 616bd19f000100000004
  Template: SubCA
  06 d2 47 e7 dc 8f a7 97 a2 b8 c3 92 03 19 24 0c 47 45 22 14
  Element.dwInfoStatus = CERT_TRUST_HAS_KEY_MATCH_ISSUER (0x2)
  Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
  ---------------- Certificate AIA ----------------
  Verified "Certificate (0)" Time: 0
  [0.0] file://\\ca\crl\RootCA.crt
  Verified "Certificate (0)" Time: 4
  [1.0] http://webserver/crl/RootCA.crt
  ---------------- Certificate CDP ----------------
  Verified "Base CRL (1c)" Time: 4
  [0.0] http://webserver/crl/RootCA.crl
  Verified "Base CRL (1c)" Time: 0
  [1.0] file://\\ca\crl\RootCA.crl
  ---------------- Base CRL CDP ----------------
  No URLs "None" Time: 0
  ---------------- Certificate OCSP ----------------
  No URLs "None" Time: 0
  CRL 1c:
  Issuer: CN=RootCA
  dc 98 2f 8d 16 9c 64 6e b2 74 89 95 9a 6c 1b 77 fd 58 63 fb
  CertContext[0][3]: dwInfoStatus=10c dwErrorStatus=0
  Issuer: CN=RootCA
  NotBefore: 27.05.2008 16:10
  NotAfter: 27.05.2110 16:20
  Subject: CN=RootCA
  Serial: 258de6fbd3bbab92460530e9e9f10536
  5d e4 56 38 13 0a 52 aa 66 51 25 61 19 33 c9 d7 a2 c7 dd 38
  Element.dwInfoStatus = CERT_TRUST_HAS_NAME_MATCH_ISSUER (0x4)
  Element.dwInfoStatus = CERT_TRUST_IS_SELF_SIGNED (0x8)
  Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
  ---------------- Certificate AIA ----------------
  Verified "Certificate (0)" Time: 0
  [0.0] file://\\ca\crl\RootCA.crt
  Verified "Certificate (0)" Time: 4
  [1.0] http://webserver/crl/RootCA.crt
  ---------------- Certificate CDP ----------------
  Verified "Base CRL (1c)" Time: 0
  [0.0] file://\\ca\crl\RootCA.crl
  Verified "Base CRL (1c)" Time: 4
  [1.0] http://webserver/crl/RootCA.crl
  ---------------- Base CRL CDP ----------------
  No URLs "None" Time: 0
  ---------------- Certificate OCSP ----------------
  No URLs "None" Time: 0
  CRL 1c:
  Issuer: CN=RootCA
  dc 98 2f 8d 16 9c 64 6e b2 74 89 95 9a 6c 1b 77 fd 58 63 fb
  Issuance[0] = 1.2.700.113556.1.4.7000.233.28688.7.167403.1102261.1593578.2302197.1
  Exclude leaf cert:
  5b 8d 96 39 f8 a3 6f af f3 89 bc 8d 78 e2 da 53 21 b8 ff aa
  Full chain:
  ca 99 30 47 9b ad ab ce 97 cc 70 80 a5 4e 11 b3 1a 83 98 78
  Verified Issuance Policies: None
  Verified Application Policies:
  1.3.6.1.5.5.7.3.2 Client Authentication
  1.3.6.1.5.5.7.3.1 Server Authentication
  ERROR: Verifying leaf certificate revocation status returned The revocation function was unable to check revocation because the revocation server was offline. 0x80092013 (-2146885613)
  CertUtil: The revocation function was unable to check revocation because the revocation server was offline.
  CertUtil: -verify command completed successfully.

  What you have discovered is the reason to *not* use LDAP URLs for CDP and AIA extensions in your PKI. To access those URLs, the account must access to the URLs. In your output, it is quite clear that the local account does not have necessary permissions
  (you also use FILE URLs for publication, which again is not recommended).
  The best practice is to use a single URL for the CDP extension. It should be an HTTP URL that is hosted on a highly available (internally and externally accessible) Web cluster.
  For the AIA extension, it should contain two URLs: one for the CA certificate - again to an internally and externally accessible, highly available Web cluster and one for the OCSP service - also
  an internally and externally accessible, highly available Web cluster.
  the other issue is that the root CA is *not* trusted when run by a non-domain account. How are you adding the trusted root CA. It is recommended to do this by running
  certutil -dspublish -f RootCA.crt.
  This will ensure that the computer account trusts the root CA. In your output, the root CA certificate is not trusted.
  Brian

• Calling  ctx_snippet() from non-owner user returns error

  Hi,
  I created a full text index in owner schema A for documents stored in BFILE datatype, and tested the snippet query, worked like dream.
  The query is something like:
  SELECT doc_id, ctx_doc.snippet('A.IDX_DUMMY',rowid,'keywords')
  FROM A.documents
  WHERE contains(document,'keywords')>0
  But, when I run the same query from an application user, I got error:
  ERROR at line 1:
  ORA-20000: Oracle Text error:
  DRG-50857: oracle error in drstldef
  ORA-22286: insufficient privileges on file or directory to perform FILEEXISTS
  operation
  ORA-06512: at "CTXSYS.DRUE", line 160
  ORA-06512: at "CTXSYS.CTX_DOC", line 1297
  ORA-06512: at line 1
  If I SQL*Plus using application user account, and run DBMS_LOB programs, the document BFILEs can be accessed without any problem.
  I also tried log in as sys, the query return the same error.
  I also specifically give directory read privilege to application user, CTX_SYS, all did not work.
  Any clue here?
  Thx,
  -Haijun

  Solved!!!
  The reason is that, initially, the directory read privilege was granted to index owner user as well as the non-owner user by sys as dba, without "with grant option"
  Now, I grant directory read privilege to the index owner user "with grant option", then the index owner grant the privilege again to the non-owner user. Now, things work! The privilege flows through.
  Thx,
  -Haijun

• Creating a package such that its postinstall script runs as a non-root user

  The pkgmap(4) man page I have (says "Last change: 30 Apr 1999"; from SUNWman 42.6,REV=6.1) says of the owner and group fields in a pkgmap entry line:
  "This field is not used for linked files or non-installable files. It is used optionally with a package information file. If used, it indicates with what [owner/group] an installation script will be executed."
  The pkgmap file I get after running pkgmk on my prototype file contains a line like
      1 i postinstall 292 23672 1166416139for the postinstall script. The man page quote above suggests that if I want the script to be run with user and group fred/staff (say), I can hand-edit this line to instead be
      1 i postinstall fred staff 292 23672 1166416139However, pkgadd doesn't like this, complaining and failing thus:
      pkgadd: ERROR: bad entry read in pkgmap
          pathname=postinstall
          problem=extra tokens on input line
      pkgadd: ERROR: unable to process pkgmapFurthermore, there doesn't seem to be anything I can put in my prototype file to get these fields into the generated pkgmap. The corresponding owner/group fields are syntax errors for a package information file in a prototype file.
  All this, and the wording in the Application Packaging Developer's Guide, suggest that the pkgmap man page is wrong and there isn't a way to specify a non-root user and group as which you want your package's install scripts to run.
  On the other hand, the pkgadd confirmation "This package contains scripts which will be executed with super-user permission during the process of installing this package. / Do you want to continue with the installation of <PCBBserv> [y,n,?]" suggests that there might be some way to make a package such that it contains scripts which will be executed with ordinary user permissions, and thus not warrant a confirmation.
  Any suggestions?
  Thanks,
  John

  tpolich wrote:One more quick question, is rc.local run the backround or say if I asked for input would the system boot hang?
  Yes, rc.local itself would hang, but if you background the process inside rc.local using the '&' symbol at the end of the command, then that command will be backgrounded and rc.local can continue.