10 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
Hi,
I am looking at a slightly different sorting problem and I am not sure how to do it in bash.
I have the following input:
0 ... (8 Replies)
Discussion started by: jamie_123
8 Replies
2. UNIX for Dummies Questions & Answers
Must I be in a group? I am using Ubuntu and am the only user on my PC. I know how to change groups but do not see a way to not be in a group. Any help would be appreciated. (2 Replies)
Discussion started by: nthepines
2 Replies
3. Shell Programming and Scripting
I have a requirement - replace specified positions in a string with a character. I found perl regex useful for this approach. however, I am facing the following issue.
The target file 'temp' contains -
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
The goal is to convert... (5 Replies)
Discussion started by: sam_roy
5 Replies
4. Shell Programming and Scripting
What is Primary group and Secondary Group in Unix.? (1 Reply)
Discussion started by: gwgreen1
1 Replies
5. Solaris
1 user in member of 4 groups find file permissions and default group (1 Reply)
Discussion started by: tirupathi
1 Replies
6. Windows & DOS: Issues & Discussions
Hi all,
need info on using putty as group.
I am having huge numbers of servers. (say 100)
I am using putty to login remotely. i want to group each 25 hostnames or a set of servers into one putty instance. (see image attached.)
Currently i have to scroll down to see all the 100 servers.
... (2 Replies)
Discussion started by: karthikn7974
2 Replies
7. AIX
Hello
A couple of weeks ago, I added a user to an AIX 5.3 system.
I go to add one today, and it appears that when creating a user in smit, I cannot see any groups.
No primary groups
No Group set
No Admin Groups
The /etc/group and etc/secuity/group files seem to be intact.
I did... (4 Replies)
Discussion started by: mhenryj
4 Replies
8. UNIX for Dummies Questions & Answers
hi eveyone i've recently requested my unix admin to create a userid for 2 groups. He created the id and i can see it by grep "id" /etc/group.
But when i login with that id into unix and try to cd that group it says permission denied. something like cd /groupname -- permission denied
Can my admin... (1 Reply)
Discussion started by: sammet
1 Replies
9. UNIX for Dummies Questions & Answers
whats the command to find a particular group,pls its urgent
thnks (3 Replies)
Discussion started by: bkan77
3 Replies
10. UNIX for Dummies Questions & Answers
:p I have a very elementary question that is kind of buggin me because I cannot figure it out.
1. How do you make a new group, give it a name, and assign permissions to specific users to access this group?
2. How do you delete a file that begins with a '-'?
3. How do you login as a... (1 Reply)
Discussion started by: zorro
1 Replies
smf_security(5) Standards, Environments, and Macros smf_security(5)
NAME
smf_security - service management facility security behavior
DESCRIPTION
The configuration subsystem for the service management facility, smf(5), requires privilege to modify the configuration of a service. Priv-
ileges are granted to a user by associating the authorizations described below to the user through user_attr(4) and prof_attr(4). See
rbac(5).
The following authorization is used to manipulate services and service instances.
solaris.smf.modify Authorized to add, delete, or modify services, service instances, or their properties.
Property Group Authorizations
The smf(5) configuration subsystem associates properties with each service and service instance. Related properties are grouped. Groups may
represent an execution method, credential information, application data, or restarter state. The ability to create or modify property
groups can cause smf(5) components to perform actions that may require operating system privilege. Accordingly, the framework requires
appropriate authorization to manipulate property groups.
Each property group has a type corresponding to its purpose. The core property group types are method, dependency, application, and frame-
work. Additional property group types can be introduced, provided they conform to the extended naming convention in smf(5). The following
basic authorizations, however, apply only to the core property group types:
solaris.smf.modify.method
Authorized to change values or create, delete, or modify a property group of type method.
solaris.smf.modify.dependency
Authorized to change values or create, delete, or modify a property group of type dependency.
solaris.smf.modify.application
Authorized to change values or create, delete, or modify a property group of type application.
solaris.smf.modify.framework
Authorized to change values or create, delete, or modify a property group of type framework.
solaris.smf.modify
Authorized to add, delete, or modify services, service instances, or their properties.
Property group-specific authorization can be specified by properties contained in the property group.
modify_authorization Authorizations allow the addition, deletion, or modification of properties within the property group.
value_authorization Authorizations allow changing the values of any property of the property group except modify_authorization.
The above authorization properties are only used if they have type astring. If an instance property group does not have one of the proper-
ties, but the instance's service has a property group of the same name with the property, its values are used.
Service Action Authorization
Certain actions on service instances may result in service interruption or deactivation. These actions require an authorization to ensure
that any denial of service is a deliberate administrative action. Such actions include a request for execution of the refresh or restart
methods, or placement of a service instance in the maintenance or other non-operational state. The following authorization allows such
actions to be requested:
solaris.smf.manage Authorized to request restart, refresh, or other state modification of any service instance.
In addition, the general/action_authorization property can specify additional authorizations that permit service actions to be requested
for that service instance. The solaris.smf.manage authorization is required to modify this property.
Defined Rights Profiles
Two rights profiles are included that offer grouped authorizations for manipulating typical smf(5) operations.
Service Management
A service manager can manipulate any service in the repository in any way. It corresponds to the solaris.smf.manage and
solaris.smf.modify authorizations.
The service management profile is the minimum required to use the pkgadd(1M) or pkgrm(1M) commands to add or remove software packages
that contain an inventory of services in its service manifest.
Service Operator
A service operator has the ability to enable or disable any service instance on the system, as well as request that its restart or
refresh method be executed. It corresponds to the solaris.smf.manage and solaris.smf.modify.framework authorizations.
Sites can define additional rights profiles customized to their needs.
Remote Repository Modification
Remote repository servers may deny modification attempts due to additional privilege checks. See NOTES.
SEE ALSO
auths(1), profiles(1), pkgadd(1M), pkgrm(1M), prof_attr(4), user_attr(4), rbac(5), smf(5)
NOTES
The present version of smf(5) does not support remote repositories.
SunOS 5.10 2 Dec 04 smf_security(5)