Admintool is the primary user account maintenance program. It is used by system administrators to create, modify, and remove user accounts.
The system administrator must log in as root to use Admintool. To start Admintool, type admintool& at a shell prompt. The Admintool program appears as shown in Figure 51.
Figure 51 Admintool
This initial view shows the system's existing user accounts. Select the Browse menu to manage groups. Figure 52 shows a sample Browse menu.
Figure 52 Admintool Browse Menu
Add User Account
To add a user, select the Edit menu, then Add. Fill in the userid in the User Name field, the user's name in the Comment field, and the home directory in the Path field. If the user is to belong to any other groups, add the group numbers in the Secondary Groups field. If you wish to impose password aging parameters, specify them in the Min Change, Max Change, Max Inactive, Expiration Date, and Warning fields. An example Add User screen is shown in Figure 53. Click OK or Apply to add the user.
Figure 53 Admintool Add User
Modify User Account
To modify a user account, select a user account in the main window by clicking on it. Then select the Edit menu, then Modify. An example Modify User screen appears in Figure 54.
Figure 54 Admintool Modify User
Lock User Account
Admintool can be used to lock a user account. This might be a useful alternative to removing an account (or changing its password) if you need to temporarily block access to the account. To lock a user account, modify it as you normally would, then in the Password pull-down, select Account is Locked. An example is shown in Figure 55.
Figure 55 Admintool Lock User
Delete User Account
Admintool is also used to delete user accounts. To delete a user account, select a user account in the main window. Then select the Edit menu, then Delete. Figure 56 for an example.
Removing a user account destroys the record of its existence. The listed username for any files or directories that were owned by the user account will reflect the numeric user number of the prior owner. It is recommended that, instead of removing a user account, you lock it and add the word "Terminated" to the user's name field.
Figure 56 Admintool Delete User
Adding groups with Admintool is as straightforward as adding users. To add groups using Admintool, select the Browse menu, then Groups. The list of groups on the system then appears. See Figure 57 for an example.
Figure 57 Admintool Groups
To add a group, select the Edit menu, then Add. Type in the number and name of the new group, then press OK. An example is shown in Figure 58.
Figure 58 Admintool Add Group
Use the Edit, Modify group menu items to change the name or members of a group. Group members are listed by name, separated by commas. An example is shown in Figure 59.
Figure 59 Admintool Modify Group
Admintool is also used to delete groups. See Figure 510 for an example. To delete a group, select a group in the main window by clicking on it. Then select the Edit menu, then Delete.
Figure 510 Admintool Delete Group
Removing a group destroys the record of its existence. The listed group name for any files or directories that were owned by the group account will reflect the numeric group of the prior owner. It is recommended that, instead of removing a group, you instead remove all users from its membership list and add the letters "LK" (short for "Locked") in the group's name field.