Home.... | log in.... | Pub my question! | Sign-up....
Java-index >> Solaris Operating System >> Solaris 10 Features

RBAC Problem

i want to make a user that has rights to login command and has a right to use the command 'find / -name .....and following options'

this is the steps i did to assign a user the logins command

1. added the entry in the /etc/security/prof_attr file

the entry is as follows

AGscript:::can perform logins command:profiles=All;auths=solaris.login.*;help=LoginHeader.html

2. added the entry in the /etc/security/exec_attr file[

AGscript:solaris:cmd:::/usr/bin/logins:euid=root,egid=bin

3. used the roleadd command

roleadd -m -P 揂Gscript?oper

4. used the usermod command

usermod -R 搊per?bgates

4. logged in as bgates

bgates$ su oper

$ /usr/bin/logins

/usr/bin/logins: cannot execute

or if i give just give the logins command

$ logins

logins: execute permission denied

this is what i m getting

please can any one help

and also i need to use the command "find /options"

so please can anyone help

[1070 byte] By [shankar_punjabi1a] at [2007-11-26 20:57:02]
«« How to retrieve a class from a map function ?
»» selectmanycheckbox & backing bean
# 1
sorry its is logins commandis there any way to give read access to the directories which are ony owned by root only
shankar_punjabi1a at 2007-7-10 2:25:56 > top of Java-index,Solaris Operating System,Solaris 10 Features...
# 2

>/usr/bin/logins: cannot execute

shouldn't this be /usr/bin/login?

I don't think you can give access to find (options), but then again, go ahead and try it and see what happens. Nothing bad is going to happen to the machine.

If not, then just give them access to the find command running as root so they can traverse subdirectories if that's what you really want them to do.

alan

alan.paea at 2007-7-10 2:25:56 > top of Java-index,Solaris Operating System,Solaris 10 Features...
# 3
sorry it was /usr/sbin/loginslogins is the System Administration Commands to list user and system login information
shankar_punjabi1a at 2007-7-10 2:25:56 > top of Java-index,Solaris Operating System,Solaris 10 Features...
# 4
i m extremely sorry as i responded very quickly without checking there is a command logins in /usr/bin/logins and not in /usr/sbin/logins
shankar_punjabi1a at 2007-7-10 2:25:56 > top of Java-index,Solaris Operating System,Solaris 10 Features...
# 5
from the man page that looks very interesting.Thanks for pointing it out.alan
alan.paea at 2007-7-10 2:25:56 > top of Java-index,Solaris Operating System,Solaris 10 Features...
# 6

> bgates$ su oper

> $ /usr/bin/logins

> /usr/bin/logins: cannot execute

Forgot what you were originally trying to accomplish.

For help on RBAC start here:

http://www.ilkda.com/rbac/

If your still having problems then list the user entries in /etc/passwd and the mods that you made to the RBAC files themselves.

If you can't get RBAC to work then you could also try to configure sudo to do the same thing.

alan

alan.paea at 2007-7-10 2:25:56 > top of Java-index,Solaris Operating System,Solaris 10 Features...
Solaris Operating System
Solaris 10 Features

Solaris Operating System New Topic

Solaris Operating System Hot Topic

Solaris Operating System

All Classified