3 .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
4 .\" Generator: DocBook XSL Stylesheets v1.75.2 <http://docbook.sf.net/>
6 .\" Manual: Commandes de gestion du syst\(`eme
7 .\" Source: Commandes de gestion du syst\(`eme
10 .TH "NEWUSERS" "8" "16/02/2011" "Commandes de gestion du syst\(`em" "Commandes de gestion du syst\(`em"
11 .\" -----------------------------------------------------------------
12 .\" * Define some portability stuff
13 .\" -----------------------------------------------------------------
14 .\" ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
15 .\" http://bugs.debian.org/507673
16 .\" http://lists.gnu.org/archive/html/groff/2009-02/msg00013.html
17 .\" ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
20 .\" -----------------------------------------------------------------
21 .\" * set default formatting
22 .\" -----------------------------------------------------------------
23 .\" disable hyphenation
25 .\" disable justification (adjust text to left margin only)
27 .\" -----------------------------------------------------------------
28 .\" * MAIN CONTENT STARTS HERE *
29 .\" -----------------------------------------------------------------
31 newusers \- Mettre \(`a jour, ou cr\('eer de nouveaux utilisateurs par lots
33 .HP \w'\fBnewusers\fR\ 'u
34 \fBnewusers\fR [\fIoptions\fR\ \fInouveaux_utilisateurs\fR]
39 command reads a file of user name and clear\-text password pairs and uses this information to update a group of existing users or to create new users\&. Each line is in the same format as the standard password file (see
40 \fBpasswd\fR(5)) with the exceptions explained below:
42 pw_name:pw_passwd:pw_uid:pw_gid:pw_gecos:pw_dir:pw_shell
46 This is the name of the user\&.
48 It can be the name of a new user or the name of an existing user (or an user created before by
49 \fBnewusers\fR)\&. In case of an existing user, the user\*(Aqs information will be changed, otherwise a new user will be created\&.
54 Ce champ sera chiffr\('e et utilis\('e comme la nouvelle valeur du mot de passe chiffr\('e\&.
59 This field is used to define the UID of the user\&.
61 If the field is empty, an new (unused) UID will be defined automatically by
64 If this field contains a number, this number will be used as the UID\&.
66 If this field contains the name of an existing user (or the name of an user created before by
67 \fBnewusers\fR), the UID of the specified user will be used\&.
69 If the UID of an existing user is changed, the files ownership of the user\*(Aqs file should be fixed manually\&.
74 This field is used to define the primary group ID for the user\&.
76 If this field contains the name of an existing group (or a group created before by
77 \fBnewusers\fR), the GID of this group will be used as the primary group ID for the user\&.
79 If this field is a number, this number will be used as the primary group ID of the user\&. If no groups exist with this GID, a new group will be created with this GID, and the name of the user\&.
81 If this field is empty, a new group will be created with the name of the user and a GID will be automatically defined by
83 to be used as the primary group ID for the user and as the GID for the new group\&.
85 If this field contains the name of a group which does not exist (and was not created earlier wbefore by
86 \fBnewusers\fR), a new group will be created with the specified name and a GID will be automatically defined by
88 to be used as the primary group ID for the user and Gs the ID for the new group\&.
93 This field is copied in the GECOS field of the user\&.
98 This field is used to define the home directory of the user\&.
100 If this field does not specify an existing directory, the specified directory is created, with ownership set to the user being created or updated and its primary group\&.
102 If the home directory of an existing user is changed,
104 does not move or copy the content of the old directory to the new location\&. This should be done manually\&.
109 This field defines the shell of the user\&. No checks are performed on this field\&.
114 first tries to create or change all the specified users, and then write these changes to the user or group databases\&. If an error occurs (except in the final writes to the databases), no changes are committed to the databases\&.
116 Cette commande a \('et\('e con\(,cue pour les gros syst\(`emes pour lesquels un grand nombre de comptes sont mis \(`a jour \(`a un m\(^eme instant\&.
119 Les options disponibles pour la commande
123 \fB\-c\fR, \fB\-\-crypt\-method\fR
125 Use the specified method to encrypt the passwords\&.
127 The available methods are DES, MD5, NONE, and SHA256 or SHA512 if your libc support these methods\&.
130 \fB\-h\fR, \fB\-\-help\fR
132 Afficher un message d\*(Aqaide et quitter\&.
135 \fB\-r\fR, \fB\-\-system\fR
137 Cr\('eer un compte syst\(`eme\&.
139 System users will be created with no aging information in
140 /etc/shadow, and their numeric identifiers are choosen in the
141 \fBSYS_UID_MIN\fR\-\fBSYS_UID_MAX\fR
143 login\&.defs, instead of
144 \fBUID_MIN\fR\-\fBUID_MAX\fR
147 counterparts for the creation of groups)\&.
150 \fB\-s\fR, \fB\-\-sha\-rounds\fR
152 Use the specified number of rounds to encrypt the passwords\&.
154 The value 0 means that the system will choose the default number of rounds for the crypt method (5000)\&.
156 A minimal value of 1000 and a maximal value of 999,999,999 will be enforced\&.
158 You can only use this option with the SHA256 or SHA512 crypt method\&.
160 By default, the number of rounds is defined by the SHA_CRYPT_MIN_ROUNDS and SHA_CRYPT_MAX_ROUNDS variables in
165 Le fichier d\*(Aqentr\('ee doit \(^etre correctement prot\('eg\('e puisqu\*(Aqil contient des mots de passe en clair\&.
167 You should make sure the passwords and the encryption method respect the system\*(Aqs password policy\&.
170 Les variables de configuration suivantes de
172 modifient le comportement de cet outil\ \&:
174 \fBENCRYPT_METHOD\fR (cha\(^ine ce caract\(`eres)
176 D\('efinit les algorithmes de chiffrement par d\('efaut du syst\(`eme pour coder les mots de passes (si aucun algorithme n\*(Aqa \('et\('e indiqu\('e sur la ligne de commandes)\&.
178 Il peut prendre une de ces valeurs\ \&:
225 Remarque\ \&: ce param\(`etre remplace la variable
226 \fBMD5_CRYPT_ENAB\fR\&.
229 \fBGID_MAX\fR (nombre), \fBGID_MIN\fR (nombre)
231 Plage d\*(Aqidentifiants num\('eriques de groupes que les commandes
236 peuvent utiliser pour la cr\('eation des groupes normaux\&.
239 \fBMAX_MEMBERS_PER_GROUP\fR (nombre)
241 Nombre maximum de membres par entr\('ee de groupe\&. Lorsque le maximum est atteint, une nouvelle entr\('ee de groupe (ligne) est d\('emarr\('ee dans
243 (avec le m\(^eme nom, m\(^eme mot de passe, et m\(^eme GID)\&.
245 La valeur par d\('efaut est 0, ce qui signifie qu\*(Aqil n\*(Aqy a pas de limites pour le nombre de membres dans un groupe\&.
247 Cette fonctionnalit\('e (groupe d\('ecoup\('e) permet de limiter la longueur des lignes dans le fichier de groupes\&. Ceci est utile pour s\*(Aqassurer que les lignes pour les groupes NIS ne sont pas plus grandes que 1024 caract\(`eres\&.
249 Si vous avez besoin de fixer cette limite, vous pouvez utiliser 25\&.
251 Remarque\ \&: les groupes d\('ecoup\('es ne sont peut\-\(^etre pas pris en charge par tous les outils (m\(^eme dans la suite d\*(Aqoutils Shadow)\&. Vous ne devriez pas utiliser cette variable, sauf si vous en avez vraiment besoin\&.
254 \fBMD5_CRYPT_ENAB\fR (bool\('een)
256 Indicate if passwords must be encrypted using the MD5\-based algorithm\&. If set to
257 \fIyes\fR, new passwords will be encrypted using the MD5\-based algorithm compatible with the one used by recent releases of FreeBSD\&. It supports passwords of unlimited length and longer salt strings\&. Set to
259 if you need to copy encrypted passwords to other systems which don\*(Aqt understand the new algorithm\&. Default is
262 This variable is superceded by the
264 variable or by any command line option used to configure the encryption algorithm\&.
266 This variable is deprecated\&. You should use
267 \fBENCRYPT_METHOD\fR\&.
270 \fBPASS_MAX_DAYS\fR (nombre)
272 Nombre maximum de jours de validit\('e d\*(Aqun mot de passe\&. Apr\(`es cette dur\('ee, une modification du mot de passe est obligatoire\&. S\*(Aqil n\*(Aqest pas pr\('ecis\('e, la valeur de \-1 est utilis\('ee (ce qui enl\(`eve toute restriction)\&.
275 \fBPASS_MIN_DAYS\fR (nombre)
277 Nombre minimum de jours autoris\('e avant la modification d\*(Aqun mot de passe\&. Toute tentative de modification du mot de passe avant cette dur\('ee est rejet\('ee\&. S\*(Aqil n\*(Aqest pas pr\('ecis\('e, la valeur de \-1 est utilis\('ee (ce qui enl\(`eve toute restriction)\&.
280 \fBPASS_WARN_AGE\fR (nombre)
282 Nombre de jours durant lesquels l\*(Aqutilisateur recevra un avertissement avant que son mot de passe n\*(Aqarrive en fin de validit\('e\&. Une valeur n\('egative signifie qu\*(Aqaucun avertissement n\*(Aqest donn\('e\&. S\*(Aqil n\*(Aqest pas pr\('ecis\('e, aucun avertissement n\*(Aqest donn\('e\&.
285 \fBSHA_CRYPT_MIN_ROUNDS\fR (nombre), \fBSHA_CRYPT_MAX_ROUNDS\fR (nombre)
292 \fISHA512\fR, this defines the number of SHA rounds used by the encryption algorithm by default (when the number of rounds is not specified on the command line)\&.
294 With a lot of rounds, it is more difficult to brute forcing the password\&. But note also that more CPU resources will be needed to authenticate users\&.
296 If not specified, the libc will choose the default number of rounds (5000)\&.
298 The values must be inside the 1000\-999999999 range\&.
301 \fBSHA_CRYPT_MIN_ROUNDS\fR
303 \fBSHA_CRYPT_MAX_ROUNDS\fR
304 values is set, then this value will be used\&.
307 \fBSHA_CRYPT_MIN_ROUNDS\fR
309 \fBSHA_CRYPT_MAX_ROUNDS\fR, the highest value will be used\&.
312 \fBSYS_GID_MAX\fR (nombre), \fBSYS_GID_MIN\fR (nombre)
314 Plage d\*(Aqidentifiants num\('eriques de groupes que les commandes
319 peuvent utiliser pour la cr\('eation de groupes syst\(`eme\&.
322 \fBSYS_UID_MAX\fR (nombre), \fBSYS_UID_MIN\fR (nombre)
324 Plage d\*(Aqidentifiants num\('eriques d\*(Aqutilisateurs que les commandes
328 peuvent utiliser pour la cr\('eation d\*(Aqutilisateurs syst\(`eme\&.
331 \fBUID_MAX\fR (nombre), \fBUID_MIN\fR (nombre)
333 Plage d\*(Aqidentifiants num\('eriques d\*(Aqutilisateurs que les commandes
337 peuvent utiliser pour la cr\('eation d\*(Aqutilisateurs normaux\&.
342 The file mode creation mask is initialized to this value\&. If not specified, the mask will be initialized to 022\&.
348 use this mask to set the mode of the home directory they create
352 to define users\*(Aq initial umask\&. Note that this mask can be overriden by the user\*(Aqs GECOS line (if
354 is set) or by the specification of a limit with the
363 Informations sur les comptes des utilisateurs\&.
368 Informations s\('ecuris\('ees sur les comptes utilisateurs\&.
373 Informations sur les groupes\&.
378 Informations s\('ecuris\('ees sur les groupes\&.
383 Configuration de la suite des mots de passe cach\('es \(Fo\ \&shadow password\ \&\(Fc\&.