JavaScript is required to for searching.
Skip Navigation Links
Exit Print View
Oracle Solaris WBEM Developer's Guide     Oracle Solaris 11 Express 11/10
Oracle Technology Network
Library
PDF
Print View
Feedback
search filter icon
search icon

Document Information

Preface

1.  Overview of Solaris Web-Based Enterprise Management

2.  Using the CIM Object Manager

3.  Using the Sample Programs

4.  Writing a Client Program

5.  Writing WBEM Queries

6.  Writing a Provider Program

7.  Creating JavaBeans Components Using the MOF Compiler

8.  Administering Security

WBEM Security Mechanisms

Client Authentication

Role Assumption

Secure Messaging

Authorization

Auditing

Logging

Using Sun WBEM User Manager to Set Access Control

What You Can and Cannot Do With Sun WBEM User Manager

Using Sun WBEM User Manager

How to Start Sun WBEM User Manager

How to Grant Default Access Rights to a User

How to Change Access Rights for a User

How to Remove Access Rights for a User

How to Set Access Rights for a Namespace

How to Remove Access Rights for a Namespace

Using the Solaris WBEM SDK APIs to Set Access Control

Solaris_UserAcl Class

How to Set Access Control for a User

Solaris_NamespaceAcl Class

How to Set Access Control for a Namespace

Troubleshooting Problems With WBEM Security

If a Client (User) Cannot Be Authenticated by the CIMOM on the WBEM Server

If Other CIM Security Exception Errors Appear

If an Authorization Check Fails

9.  Troubleshooting

A.  Solaris Schema

Index

Using Sun WBEM User Manager

This section describes how to start and use Sun WBEM User Manager.

How to Start Sun WBEM User Manager

  1. Become superuser.
  2. In a command window, type the following command:
    # /usr/sadm/bin/wbemadmin

    Sun WBEM User Manager starts, and a Login dialog box opens.

    Note - Context-help information is available in the Context Help panel when you click on the fields in the Login dialog box.

  3. Fill in the fields on the Login dialog box.
    1. In the User Name field, type the user name.

      Note - You must have read access to the root\security namespace to log in. By default, Solaris users have guest privileges, which grant them read access to the default namespaces. Users with read access can view but not change user privileges.

      You must log in as root or a user with write access to the root\security namespace to grant access rights to users.

    2. In the Password field, type the password for the user account.
  4. Click OK.

    The User Manager dialog box opens. The dialog box contains a list of users and their access rights to WBEM objects within the namespaces on the current host.

How to Grant Default Access Rights to a User

  1. Start Sun WBEM User Manager.
  2. In the Users Access portion of the dialog box, click Add.

    A dialog box opens that lists the available namespaces.

  3. Type the name of a Solaris user account in the User Name field.
  4. Select a namespace from the listed namespaces.
  5. Click OK.

    The user name is added to the User Manager dialog box.

  6. To save changes and close the User Manager dialog box, click OK. To save changes and keep the dialog box open, click Apply.

    The user that you specified is granted read access to CIM objects in the namespace that you selected.

How to Change Access Rights for a User

  1. Start Sun WBEM User Manager.
  2. Select the user whose access rights you want to change.
  3. Set the user privileges. To grant the user read-only access, click the Read check box. To grant the user write access, click the Write check box.
  4. To save changes and close the User Manager dialog box, click OK. To save changes and keep the dialog box open, click Apply.

How to Remove Access Rights for a User

  1. Start Sun WBEM User Manager.
  2. In the Users Access portion of the dialog box, select the user name for which you want to remove access rights.
  3. Click Delete to delete the user's access rights to the namespace.

    A confirmation dialog box opens. This dialog box prompts you to confirm your decision to delete the user's access rights.

  4. To confirm, click OK.
  5. To save changes and close the User Manager dialog box, click OK. To save changes and keep the dialog box open, click Apply.

How to Set Access Rights for a Namespace

  1. Start Sun WBEM User Manager.
  2. In the Namespace Access portion of the dialog box, click Add.

    A dialog box opens. The dialog box lists the available namespaces.

  3. Select the namespace for which you want to set access rights.

    Note - By default, users have read-only access to a namespace.

    • To allow no access to the namespace, make sure that the Read and Write check boxes are not selected.

    • To allow write access, select Write.

    • To allow read access, select Read.

  4. To save changes and close the User Manager dialog box, click OK. To save changes and keep the dialog box open, click Apply.

How to Remove Access Rights for a Namespace

  1. Start Sun WBEM User Manager.
  2. In the Namespace Access portion of the dialog box, select the namespace for which you want to remove access control, and then click Delete.

    Access control is removed from the namespace, and the namespace is removed from the list of namespaces on the Sun WBEM User Manager dialog box.

  3. To save changes and close the User Manager dialog box, click OK. To save changes and keep the dialog box open, click Apply.
Copyright © 1999, 2010, Oracle and/or its affiliates. All rights reserved. Legal Notices
Previous Next