pbrun command Unix
This command is part of powerbroker server that provides advance root privileges. This application provides privileges to other users and also log all events on one centralized location. pbrun command used to acquire privileged of other users in controllers system. Many options are available with pbrun command as below:
JavaHonk$ pbrun --help
Usage pbrun [<options>] command [command arguments]
-b, --background Run client program in background mode (ignore hangups)
--disable_optimized_runmode Suppress optimized run mode and use pblocald
-h, --host=<runhost> Run program on the target host
-l, --local_mode Run program in local mode
-n, --null_input Run with no user input
-p, --pipe_mode Run as if in a pipe
--solarisproject Specifies a Solaris Project to associate the secured task with.
-u, --user=<requestuser> Provide requestuser to the policy
-d, --debug=connect Display debug trace of connection to master
-d, --debug=time Display time trace for internal events
-d, --debug=ttime Display total time for execution
-d, --debug=log=<level> Generate debug trace logs for active components that will process the command
-d, --debug=mlog=<level> Permanently set debug trace level setting for the master daemon that will process the command.
-d, --debug=glog=<level> Permanently set debug trace level setting for the log daemon that will process the command.
-d, --debug=llog=<level> Permanently set debug trace level setting for the local daemon that will process the command.
--testmaster=<host> Test policy processing with specified host as master.
or
-v, --version Display version and exit
or
--help Display this help message and exit
JavaHonk$Example:
- If you want to acquire privileges of user name: swebpsiu run command pbrun -u swebpsiu bash as below:
JavaHonk$ whoami
JavaHonk
JavaHonk$ pbrun -u swebpsiu bash
0a36700154ca9f0746B8@JavaHonk.intranet.com
******************************************
* Warning: This session is being logged. *
******************************************
***************************************************************************
LEGAL NOTICE
You will commit a criminal offence if you act outside your authority in
relation to this computer.
The penalty is a FINE, IMPRISONMENT or BOTH.
If you are acting outside your authority, DO NOT PROCEED any further.
****************************************************************************
Active Directory Password:
swebpsiu@JavaHonk $ whoami
swebpsiu
swebpsiu@JavaHonk $- Displays current version of pbrun: pbrun -v
JavaHonk $ pbrun -v pbrun Version 8.0.0-10 x86_64_linuxA
- For more information on Unix command please visit Wikipedia
Which account’s password is entered for you to switch from JavaHonk to swebpsiu?
That is not with account id and pass. If you want to impersonate super user you will have enter super user id then It will ask to enter your own password. If you work on corporate environment then it will be your window id.