Feature #2706
Extended support for RBAC
| Status: | Accepted | Start date: | 10/07/2009 | |
|---|---|---|---|---|
| Priority: | Normal | Due date: | ||
| Assignee: |  Martin Englund |
% Done: | 0% |
|
| Category: | Solaris | |||
| Target version: | 3.X | |||
| Affected Puppet version: | 0.25.0 | Branch: | ||
| Keywords: | solaris rbac | |||
| Votes: | 2 |
Description
Support for managing the remaining Solaris RBAC files is needed: /etc/security/auth_attr /etc/security/exec_attr /etc/security/prof_attr
These are plain text files so they should be easy to manage using parsedfile.rb
History
Updated by James Turnbull over 2 years ago
- Target version changed from 0.25.2 to 2.6.0
Updated by James Turnbull over 2 years ago
- Target version changed from 2.6.0 to 2.7.x
Updated by Nigel Kersten about 1 year ago
- Target version deleted (
2.7.x)
Updated by James Turnbull about 1 year ago
I think what Martin is saying here is that we’ve half-implemented Solaris RBAC and the solution should be more substantive and cover all the features of RBAC on Solaris.
Updated by Martin Englund about 1 year ago
That is correct :)
Updated by Nigel Kersten about 1 year ago
- Target version set to 3.X
Can we get a little more detail in the ticket so we can hand this to a developer who may not have administered RBAC in Solaris? :)
Updated by Martin Englund about 1 year ago
The file formats are defined in man pages auth_attr(4), exec_attr(4) and prof_attr(4).
You can find a good writeup of what Solaris RBAC is here: http://www.softpanorama.org/Solaris/Security/solaris_rbac.shtml it also contain a lot of detail on how the files relate to each other.
And if you have questions – feel free to ask me, even though I no longer work for SunWOracle.
Updated by Nigel Kersten about 1 year ago
That’s great Martin. Thank you.