Where can I find a Unix su (substitute user) like utility?
December 9, 1999
A. Background for those unfamiliar with Unix: It is a goodidea for system administrators to do everyday's work with a low privilegedaccount and only change to an account which is a member of the Administratorsgroup if you really have to do administrative work. To avoid closing all openapplications and log off, it is useful to have a utility that allows you totemporarily start applications running in the security context of a differentaccount.
The Resource Kits ships SU.EXE, a free equivalent is SU.ZIP (on Cica in/admin). Both require setting system privileges for the caller. Analternative is SUSRV.ZIP (also from Cica), which has to be installed as aservice, but does not require privileges. There is no equivalence to Unix suidprograms (i.e. a file attribute which achieves that the file is run in thesecurity context of the owner instead of the caller, without specifying apassword).
A new utility is NTsu which will allow you to run programs in the securitycontext of any user in your system or domain. NTsu also allow you to havemultiple desktop's, each one for a different user, and you can switch from oneto another. NTsu is FreeWare. It can be downloaded fromhttp://32bit.bhs.com orhttp://www.ntfaq.com/ntfaq/download/ntsu10.zip.The official page is at http://www.teleline.es/personal/quimeras/ntsu/ntsu.htm
Windows 2000 now supplies RUNAS.EXE which allows a program to run as anotheruser (see 'How can I run a program as another user in Windows 2000?' for more information).
About the Author
You May Also Like