Sun Cluster + RBAC

hi,Sun Cluster 3.1Solaris 10 11/06I need to give rights to do scswitch -n ...scswitch -z ...scswitch -F ...to non-root users. I gonna todo it via sudo.Can someone send real examples how to do it via RBAC ?--mpech

[282 byte] By [mpecha] at [2007-11-27 0:05:59]

«« Problem in making installer in java
»» Download servlet from external server

# 1

Put an entry in /etc/user_attr similar to the following:myuser::::auths=solaris.cluster.adminOr you can chose specific sub-options. Check man 5 rbac for more details.Tim

Tim.Reada at 2007-7-11 16:02:53 >

top of Java-index,Solaris Operating System,Solaris Essentials - General Technical Questions...

# 2

hi,Thank you reply.This is known example and too simple.Can you reply more complex? :)--mpech

mpecha at 2007-7-11 16:02:53 >

# 3

If you want to do this on a per resource group basis, you can't. The RBAC controls are not that fine grain. This has been discussed internally and I've raised it as an issue previously.

If you want to just do it for those options on any resource group/resource, then you can specify solaris.cluster.resource.admin but that would cover all these options and not just one.

So, in short, there isn't a complex option because the RBAC controls are handled at a fairly coarse level.

Regards,

Tim

Tim.Reada at 2007-7-11 16:02:53 >

Solaris Operating System

Solaris Essentials - General Technical Questions

Java programming resources: FAQs, tutorials, compiler and browser download sites, documentation, books lists, IDEs, etc.

Sun Cluster + RBAC

Solaris Operating System New Topic

Solaris Operating System Hot Topic

Solaris Operating System

All Classified