admin Resource - Introduction to Oracle® Solaris Zones

Introduction to Oracle^® Solaris Zones

Exit Print View

» ...Documentation Home » Oracle Solaris 11.2 Information Library » Introduction to Oracle^® Solaris ... » Non-Global Zone Configuration Overview » Zone Components » admin Resource

Updated: December 2014

Introduction to Oracle^® Solaris Zones

Document Information

Using This Documentation

Chapter 1 Oracle Solaris Zones Introduction

Chapter 2 Non-Global Zone Configuration Overview

About Resources in Zones

Using Rights Profiles and Roles in Zone Administration

zonecfg template Property

Pre-Installation Configuration Process

Zone Components

Zone Name and Path

file-mac-profile Property for Immutable Zones

dedicated-cpu Resource

solaris-kz Only: virtual-cpu Resource

capped-cpu Resource

Scheduling Class

Physical Memory Control and the capped-memory Resource

solaris and solaris10 Only:rootzpool Resource

Adding a zpool Resource Automatically

Zone Network Interfaces

File Systems Mounted in Zones

File System Mounts and Updating

Host ID in Zones

/dev File System in Non-Global Zones

Removable lofi Device in Non-Global Zones

Disk Format Support in Non-Global Zones

Kernel Zones Device Resources With Storage URIs

Configurable Privileges

Resource Pool Association

Setting Zone-Wide Resource Controls

Including a Comment for a Zone

Using the zonecfg Command

zonecfg Interactive Mode

zonecfg Command-File Mode

Zone Configuration Data

Resource Types and Properties

Resource Type Properties

Tecla Command-Line Editing Library

Language:

`admin` Resource

The admin setting allows you to set zone administration authorization. The preferred method for defining authorizations is through the zonecfgcommand.

user

Specify the user name.

auths

Specify the authorizations for the user name.

solaris.zone.login: If RBAC is in use, the authorization solaris.zone.login/zonename is required for interactive logins. Password authentication takes place in the zone.
solaris.zone.manage: If RBAC is in use, for non-interactive logins, or to bypass password authentication, the authorization solaris.zone.manage/zonename is required.
solaris.zone.clonefrom: If RBAC is in use, subcommands that make a copy of another zone require the authorization, solaris.zone.clonefrom/source_zone.

For more information on authorizations, see auths (1) , auth_attr (4) , and user_attr (4) .

Copyright © 2004, 2014, Oracle and/or its affiliates. All rights reserved. Legal Notices