- Created an ibmusers group
- Created an ibmuser account ( as a member of the ibmusers group )
useradd -g ibmusers ibmuser
- Set the password for the ibmuser account
- Set permissions for the /opt directory structure for the ibmusers group - on my system, this is ONLY used by WebSphere
chmod -R g+rwx /opt/IBM
chgrp -R ibmusers /opt/IBM
- Set permissions for the /tmp directory structure for the ibmusers group
chmod -R g+wr /tmp
chgrp -R ibmusers /tmp
- Set permissions for the /var/tmp directory structure for the ibmusers group
chmod -R g+wr /var/tmp
chgrp -R ibmusers /var/tmp
- Having checked, as root, that WebSphere Portal was stopped - using the serverStatus.sh command, I logged in as ibmuser and navigated to the following directories: -
and verified that I could create/edit/delete files using the touch, vi and rm commands
- Again, as ibmuser, I then used the startServer.sh and stopServer.sh commands to start and stop WebSphere Portal
- Having run up the server, again as ibmuser, I checked that I could view and delete the logs in: -
- I rebooted the server, and logged on from the Gnome login panel as ibmuser and ran through the same tests as before, just to ensure that there were no root permissions hanging around :-)
Given that I'd made a change to the permissions of /tmp, I though that there might be lock files etc. hanging around. I changed the runlevel to 3 to fully kill the X11 server, via the init 3 command, cleared the contents of /tmp using the command rm -Rf /tmp/* and then restarted X11 using the command init 5.
When I logged into Gnome as root, all was well.
So far, so good. The next test is to add a new user to the ibmusers group and see whether I can run through the same set of tests again.