What are the best practices for setting the default group for new UNIX-enabled users in QAS for a large deployment?
We are about to embark on deploying the Quest products (ARS, QAS, QPM4U) on 1,000+ hosts that have ~1,000 unique users spread across those hosts. We have 3 UNIX OSes to deal with, AIX, Solaris, and Linux.
We intend to remove local user accounts, but I think we still have an issue in regards to the default group to use when initially UNIX-enabling a user. The default group currently in use, staff with a GID of 1, would run into issues depending upon the OS. Here is the GID issue is short:
Comments, and how do other people handle multiple OS environments for this?
We are about to embark on deploying the Quest products (ARS, QAS, QPM4U) on 1,000+ hosts that have ~1,000 unique users spread across those hosts. We have 3 UNIX OSes to deal with, AIX, Solaris, and Linux.
We intend to remove local user accounts, but I think we still have an issue in regards to the default group to use when initially UNIX-enabling a user. The default group currently in use, staff with a GID of 1, would run into issues depending upon the OS. Here is the GID issue is short:
AIX – default staff is 1, audit is 10
Solaris – default staff is 10, other is 1
Linux – default group is the same as the UID, wheel is 10, binis 1
I've considered setting up a completely new group & GID for the staff (equivalent) default group for users.Comments, and how do other people handle multiple OS environments for this?