devpolicy reads the /etc/security/tsol/device_policy file and, for each device node in the /devices tree, constructs device policy information and downloads the information to the kernel.
To be successful, devpolicy requires the trusted path attribute and the
sys_devices privilege. If device policy has been downloaded by an earlier invocation of the command, devpolicy will fail. If a device has two or
more device nodes that are assigned different policies in the device_policy file, devpolicy displays a warning.
See attributes(5) for descriptions of the following attributes:
|ATTRIBUTE TYPE||ATTRIBUTE VALUE|
Silent mode; suppresses non-critical warning messages.
Verbose mode; displays all warning messages, including messages for unknown devices.
Read policyfile instead of /etc/security/tsol/device_policy.
Find devices under rootdir instead of /devices.