The admin setting allows you to set zone administration authorization. The preferred method for defining authorizations is through the zonecfgcommand.
Specify the user name.
Specify the authorizations for the user name.
If RBAC is in use, the authorization solaris.zone.login/zonename is required for interactive logins. Password authentication takes place in the zone.
If RBAC is in use, for non-interactive logins, or to bypass password authentication, the authorization solaris.zone.manage/zonename is required.
If RBAC is in use, subcommands that make a copy of another zone require the authorization, solaris.zone.clonefrom/source_zone.
For more information on authorizations, see auths (1) , auth_attr (4) , and user_attr (4) .