用户账户管理
本地账户
用户账户
超级用户 root
普通用户 kiosk
程序用户 不能登陆系统
组账户
基本组 私有的
附加组 公共的
id UID GID
用户账户配置文件 /etc/passwd 储存用户账户信息
student:x:1000:1000:Student User:/home/student:/bin/bash
用户名:密码:UID:GID:描述:家目录:shell
用户密码文件 /etc/shadow
tcpdump:!!:18375::::::
student:$6$8oIjLCsc$/n1iQXYh1E6.uOEuJKgioqAtmqm2TQmkJGF2RwyteIr1tIfrPdiRYgWe6Sjen5/eMij2uHM/a1tue/QRlo3X80:18389:0:99999:7:::
用户名:密码:密码创建时间(天):密码最小使用天数:最大有效天数:密码实效前几天警告:秘密到期后几天禁用账号:账号被禁用几天:预留值(保留字段)
hash 算法
$6 sha
$5 md5
创建用户账户
useradd
-u uid
-s shell
-d home
-M no-home
-g primary group 基本组/主要组/主组
-G 附加组
293 useradd st01 默认会创建st01账号以及st01的组,家目录
294 cat /etc/passwd
295 more /etc/passwd
296 less /etc/passwd
297 head /etc/passwd
298 head -n 2 /etc/passwd
299 tail /etc/passwd
300 tail -n 2 /etc/passwd
[root@abc ~]# useradd -u 1234 -d /home/haha -M -g st01 -G student -s /sbin/nologin -c 'test user no home' test
[root@abc ~]#
[root@abc ~]# tail -n 1 /etc/passwd
test:x:1234:1002:test user no home:/home/haha:/sbin/nologin
[root@abc ~]# ls /home/
devops st01 student
[root@abc ~]#
[root@abc ~]# id test
uid=1234(test) gid=1002(st01) groups=1002(st01),1000(student)
[root@abc ~]#
修改用户信息 改passwd文件
usermod
[root@abc ~]# tail -n 1 /etc/passwd
test:x:1234:1002:test user no home:/home/haha:/sbin/nologin
[root@abc ~]#
[root@abc ~]# usermod -s /bin/bash test
[root@abc ~]# tail -n 1 /etc/passwd
test:x:1234:1002:test user no home:/home/haha:/bin/bash
[root@abc ~]#
给账号赋予登陆密码
passwd test
[root@abc ~]# passwd test
Changing password for user test.
New password:
BAD PASSWORD: The password is shorter than 8 characters
Retype new password:
passwd: all authentication tokens updated successfully.
[root@abc ~]#
自己修改自己密码 passwd
bash-4.4$ passwd
Changing password for user test.
Current password:
New password:
BAD PASSWORD: The password fails the dictionary check - it is too simplistic/systematic
passwd: Authentication token manipulation error
查询系统账号信息 命令 id
[root@abc ~]# id abc
id: ‘abc’: no such user
[root@abc ~]# id test
uid=1234(test) gid=1002(st01) groups=1002(st01),1000(student)
[root@abc ~]#
passwd命令
-d 清空用户密码,使其无密码可以的登陆系统
[root@abc ~]# tail -n 1 /etc/shadow
test:$6$zUCwEd47/2vMYrdn$W8jxAHE9Lbg8qhDJX.NwUb/0vuvpz0ffKdDu/oaK1haFPMQe5JKUez.Q28xk.2hMDofpmG8EPzRpMOAkjBOEu1:18935:0:99999:7:::
[root@abc ~]# passwd -d test
Removing password for user test.
passwd: Success
[root@abc ~]# tail -n 1 /etc/shadow
test::18935:0:99999:7:::
-l 锁定用户,禁用
-u 解锁账户
[root@abc ~]# tail -n 1 /etc/shadow
test:$6$Li9rIejo78gkskhe$tHgRHdx82E0Nv7iNFk4r8BxafiapIaPgMlqjY2QOErQyFEn7uP/Zpo08mcy9DdUymFIPAuF1/hYVxH/HgGFG7.:18935:0:99999:7:::
[root@abc ~]# passwd -l test
Locking password for user test.
passwd: Success