| NEWUSERS(8) | 系统管理命令 | NEWUSERS(8) |
名称¶
newusers - 批量更新和创建新用户
大纲¶
newusers [选项] [文件]
描述¶
The newusers command reads a file (or the standard input by default) and uses this information to update a set of existing users or to create new users. Each line is in the same format as the standard password file (see passwd(5)) with the exceptions explained below:
pw_name:pw_passwd:pw_uid:pw_gid:pw_gecos:pw_dir:pw_shell
pw_name
It can be the name of a new user or the name of an existing user (or a user created before by newusers). In case of an existing user, the user's information will be changed, otherwise a new user will be created.
pw_passwd
pw_uid
If the field is empty, a new (unused) UID will be defined automatically by newusers.
如果此字段包含一个数字,此数字会用于 UID。
If this field contains the name of an existing user (or the name of a user created before by newusers), the UID of the specified user will be used.
如果一个现有用户更改了 UID,此用户的文件所有权需要手动修复。
pw_gid
If this field contains the name of an existing group (or a group created before by newusers), the GID of this group will be used as the primary group ID for the user.
如果此字段是一个数字,此数字会被用作此用户的主组 ID。如果没有对应此 GID 的现有组,将会使用此 GID 创建一个新组,名称和用户名相同。
If this field is empty, a new group will be created with the name of the user and a GID will be automatically defined by newusers to be used as the primary group ID for the user and as the GID for the new group.
If this field contains the name of a group which does not exist (and was not created before by newusers), a new group will be created with the specified name and a GID will be automatically defined by newusers to be used as the primary group ID for the user and GID for the new group.
pw_gecos
pw_dir
If this field does not specify an existing directory, the specified directory is created, with ownership set to the user being created or updated and its primary group. Note that newusers does not create parent directories of the new user's home directory. The newusers command will fail to create the home directory if the parent directories do not exist, and will send a message to stderr informing the user of the failure. The newusers command will not halt or return a failure to the calling shell if it fails to create the home directory, it will continue to process the batch of new users specified.
If the home directory of an existing user is changed, newusers does not move or copy the content of the old directory to the new location. This should be done manually.
pw_shell
newusers first tries to create or change all the specified users, and then write these changes to the user or group databases. If an error occurs (except in the final writes to the databases), no changes are committed to the databases.
此命令一般用于在大型的应用环境中,对大量账户进行一次性更新。
选项¶
The options which apply to the newusers command are:
--badname
-c, --crypt-method
可用的方法有 DES, MD5, NONE, and SHA256 或 SHA512,前提是您的 libc 支持这写方法。
-h, --help
-r, --system
System users will be created with no aging information in /etc/shadow, and their numeric identifiers are chosen in the SYS_UID_MIN-SYS_UID_MAX range, defined in login.defs, instead of UID_MIN-UID_MAX (and their GID counterparts for the creation of groups).
-R, --root CHROOT_DIR
-s, --sha-rounds
值 0 表示让系统为加密方法选择默认的轮转次数 (5000)。
会强制最小 1,000,最大 9,9999,9999
您只可以对 SHA256 或 SHA512 使用此选项。
By default, the number of rounds is defined by the SHA_CRYPT_MIN_ROUNDS and SHA_CRYPT_MAX_ROUNDS variables in /etc/login.defs.
CAVEATS¶
输入文件必须受到保护,因为它包含未加密的密码。
您需要确保你吗和加密方法符合系统的密码策略。
配置文件¶
The following configuration variables in /etc/login.defs change the behavior of this tool:
文件¶
/etc/passwd
/etc/shadow
/etc/group
/etc/gshadow
/etc/login.defs
/etc/subgid
/etc/subuid
参见¶
| 2022-09-28 | shadow-utils 4.9 |