policy.conf File - Securing Users and Processes in Oracle® Solaris 11.2

Securing Users and Processes in Oracle^® Solaris 11.2

Exit Print View

» ...Documentation Home » Oracle Solaris 11.2 Information Library » Securing Users and Processes in ... » Reference for Oracle Solaris Rights » Rights Databases » policy.conf File

Updated: July 2014

Securing Users and Processes in Oracle^® Solaris 11.2

Document Information

Using This Documentation

Chapter 1 About Using Rights to Control Users and Processes

Chapter 2 Planning Your Administrative Rights Configuration

Chapter 3 Assigning Rights in Oracle Solaris

Chapter 4 Assigning Rights to Applications, Scripts, and Resources

Chapter 5 Managing the Use of Rights

Chapter 6 Listing Rights in Oracle Solaris

Chapter 7 Troubleshooting Rights in Oracle Solaris

Chapter 8 Reference for Oracle Solaris Rights

Rights Profiles Reference

Viewing the Contents of Rights Profiles

Authorizations Reference

Authorization Naming Conventions

Delegation Authority in Authorizations

Rights Databases

Rights Databases and the Naming Services

user_attr Database

auth_attr Database

prof_attr Database

exec_attr Database

policy.conf File

Commands for Administering Rights

Commands That Manage Authorizations, Rights Profiles, and Roles

Selected Commands That Require Authorizations

Privileges Reference

Commands for Handling Privileges

Files That Contain Privilege Information

Privileged Actions in the Audit Record

Security Glossary

Language:

`policy.conf` File

The /etc/security/policy.conf file provides a way of granting specific rights profiles, specific authorizations, and specific privileges to all users of a system. The relevant entries in the file consist of key=value pairs:

AUTHS_GRANTED=authorizations – Refers to one or more authorizations.
AUTH_PROFS_GRANTED=rights profiles – Refers to one or more authenticated rights profiles.
PROFS_GRANTED=rights profiles – Refers to one or more rights profiles that are not authenticated.
CONSOLE_USER=Console User– Refers to the Console User rights profile. This profile is delivered with a convenient set of authorizations for the console user. You can customize this profile.
PRIV_DEFAULT=privileges – Refers to one or more privileges.
PRIV_LIMIT=privileges – Refers to all privileges.

The following example shows some rights values from a policy.conf database:

## 
AUTHS_GRANTED=
AUTH_PROFS_GRANTED=
CONSOLE_USER=Console User
PROFS_GRANTED=Basic Solaris User
#PRIV_DEFAULT=basic
#PRIV_LIMIT=all

Copyright © 2002, 2014, Oracle and/or its affiliates. All rights reserved. Legal Notices