NAME
secweb — invokes the HP-UX Security Attributes Configuration tool
SYNOPSIS
secweb
[
-F
]
[
-b
]
secweb
-t
DESCRIPTION
The HP-UX Security Attributes Configuration tool
(secweb)
is used to view and configure system-wide
and per-user (local users and NIS users) values of security attributes.
It also gives information about account locks.
The HP-UX Security Attributes Configuration tool provides both Web-based
and terminal user interface.
The Web-based interface is launched through the HP System
Management Homepage.
Superuser privileges are required to access the HP-UX Security Attributes Configuration tool.
A user who does not have superuser privileges has read-only access to the
System Defaults area in the HP-UX Security Attributes Configuration tool and cannot modify
or reset per-user values.
The terminal user interface is invoked if any of the following conditions
are true:
The command
/usr/sbin/secweb
is invoked with
-t
option.
The
DISPLAY
environment variable is not set.
The Web-based interface is launched if all the following conditions are
true:
The command
/usr/sbin/secweb
is invoked with
-F
option.
The
DISPLAY
environment variable is set.
The command
/opt/hpsmh/lbin/samweb
is available on the system.
If the Web-based interface cannot be launched,
secweb
invokes the terminal user interface.
Options
secweb
recognizes the following options:
- -F
Forces a client browser to be used in less secure ways.
The
-F
option forces the client browser to be used or
started, even when the X-traffic between the X-server and
the Mozilla browser is not secure.
Use this option only when you are sure the network
traffic between the host where Mozilla is running and
the host in the
DISPLAY
variable is secure.
If
secweb
cannot start the Web browser, the terminal
interface is started.
When the HP-UX Security Attributes Configuration Web interface is invoked
by SAM, the
-F
option is used.
- -b
If a privileged user (root) executes the
secweb
command with the
-b
option, a temporary login bypass key is generated.
The bypass key enables the user to access
the Web interface without having to provide login
information again.
When the HP-UX Security Attributes Configuration Web interface is invoked
by SAM, the
-b
option is used.
- -t
Opens the terminal interface for setting system-wide and
per-user values of security attributes regardless of
the current setting of the
DISPLAY
environment variable.
Note:
You can also start the HP-UX Security Attributes Configuration tool using
one of the following methods:
Invoke
/usr/sbin/sam
and select the Security Attributes Configuration (character mode)
functional area to launch the terminal user interface and the
Security Attributes Configuration (Web-based Interface) to launch
the Web-based tool.
Invoke the HP-UX Security Attributes Configuration tool Web interface by
typing the URL
http://hostname:2301/secweb/secweb.cgi
in the address bar of your browser, where
hostname
is the name of the server.
Launch the HP-UX Systems Insight Manager on the server and select the
Security Attributes Configuration tool from Configure -> HP-UX Configuration
menu.
Online Help
After the HP-UX Security Attributes Configuration tool is started, the online help provides details on how to use the tool.
RETURN VALUES
Upon completion, secweb returns one of the following values:
- 0
Successful
- 1
An error occurred
WARNINGS
For increased security, paste the URL
http://hostname:2301/secweb/secweb.cgi
in your browser, click on the Tools menu in the menu bar,
then the Security Attributes Configuration functional area.
The default minimum values of the security attributes
PASSWORD_MIN_LOWER_CASE_CHARS,
PASSWORD_MIN_UPPER_CASE_CHARS,
PASSWORD_MIN_DIGIT_CHARS,
and
PASSWORD_MIN_SPECIAL_CHARS
do not meet the requirements for the
passwd
command.
A password must contain at least two letters and at least one numeric
or special character.
HP recommends that you change the default values in
/etc/default/security
for the above mentioned security attributes as per
passwd
requirements.
For more information on password construction requirements, refer to
passwd(1).
AUTHOR
secweb
was developed by Hewlett-Packard Company.
Printable version
