First of all, apologies for any mistakes that I make regarding not following
the "posting rules".This is my first post on this forum.
I have created a new user on my OpenSolaris installatation and wanted to
assign all privileges to the new user. I did this through the "Users and
Groups" tool. But once i log off and log in again, i see that the privileges
are no more "ticked" in the "Users and Groups" GUI.I was also unable to "su"
root. I had to first su <PrimaryAdmin> and then su root.
So, i opened the /etc/user_attr file .
/****************
/etc/user_attr snippet :
root::::type=role;auths=solaris.*,solaris.grant;profiles=All;lock_after_retries=no;min_label=admin_low;clearance=admin_high
aditya::::profiles=Primary Administrator;roles=root
#amod::::profiles=Apache 22 Administration,Application Server
Management,Audit Control,Audit Review,Basic Actions,Console #User,Contract
Observer,Cron Management,Crypto Management,DAT Administration,D-BUS
Management,Desktop Configuration,Device #Management,Device Security,DHCP
Management,dtwm,File System Management,File System Security,FTP
Management,HAL #Management,Idmap Name Mapping Management,Idmap Service
Management,Inetd Management,Information Security,IP Filter #Management,ISCSI
Target Administration,ISCSI Target Management,ISNS Server
Management,Kerberos Client Management,Kerberos #Server Management,Log
Management,Mail Management,Maintenance and Repair,Media Backup,Media
Restore,MySQL #Administration,Name Service Management,Name Service
Security,NDMP Management,Network IPsec Management,Network Link
#Security,Network Management,Network Security,Network Wifi
Management,Network Wifi Security,Object Access #Management,Object Label
Management,Operator,Outside Accred,Postgres Administration,Primary
Administrator,Printer #Management,Process Management,Project
Management,Rights Delegation,Rmvolmgr Management,Service Management,Service
#Operator,shutdown,SMBFS Management,SMB Management,Software
Installation,System Administrator,System Event Management,User
#Management,User Security,VSCAN Management,Web Console Management,ZFS File
System Management,ZFS Storage Management,Zone #Management;
amod::::auths=solaris.*,solaris.grant;profiles=All;roles=root
/********************end of snippet
(all the lines of amod (second from last) have been commented, they might
not show up properly...formatting problems)
so as u can see, my user (amod) had all the privileges, but they weren't
showing up in the GUI ! (bug ??). And now i understood why i couldn't "su"
root... i had no "roles" defined. I have no idea of how to set roles through
the GUI or the CLI, so instead i just copied "root's" line and made some
changes.
So now, i can su root directly from amod .
I think the privileges not showing up in the GUI is probably a bug. Can
someone else also confirm this ?
So any suggestions on how this can be done differently ? I mean, is there a
way to define roles for a user through the GUI ?
--
====================================
WITH REGARDS ,
AMOD
====================================
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://mail.opensolaris.org/pipermail/desktop-discuss/attachments/20080927/91bbc956/attachment.html>
