JavaScript is required to for searching.
Skip Navigation Links
Exit Print View
Solaris WBEM Developer's Guide
Oracle Technology Network
Library
PDF
Print View
Feedback
search filter icon
search icon

Document Information

Preface

1.  Overview of Solaris Web-Based Enterprise Management

2.  Using the CIM Object Manager

3.  Using the Sample Programs

4.  Writing a Client Program

5.  Writing WBEM Queries

6.  Writing a Provider Program

7.  Creating JavaBeans Components Using the MOF Compiler

8.  Administering Security

WBEM Security Mechanisms

Client Authentication

Role Assumption

Secure Messaging

Authorization

Auditing

Logging

Using Sun WBEM User Manager to Set Access Control

What You Can and Cannot Do With Sun WBEM User Manager

Using Sun WBEM User Manager

How to Start Sun WBEM User Manager

How to Grant Default Access Rights to a User

How to Change Access Rights for a User

How to Remove Access Rights for a User

How to Set Access Rights for a Name Space

How to Remove Access Rights for a Name Space

Using the Solaris WBEM SDK APIs to Set Access Control

Solaris_UserAcl Class

How to Set Access Control for a User

Solaris_NamespaceAcl Class

How to Set Access Control for a Name Space

Troubleshooting Problems With WBEM Security

If a Client (User) Cannot Be Authenticated by the CIMOM on the WBEM Server

If Other CIM Security Exceptions Appear

If an Authorization Check Fails

9.  Troubleshooting

A.  Solaris Platform Schema

Index

Using Sun WBEM User Manager

This section describes how to start and use Sun WBEM User Manager.

How to Start Sun WBEM User Manager

  1. Become superuser.
  2. In a command window, type the following command:
    # /usr/sadm/bin/wbemadmin

    Sun WBEM User Manager starts, and a Login dialog box opens.

    Note - Context-help information is available in the Context Help panel when you click on the fields in the Login dialog box.

  3. Fill in the fields on the Login dialog box.
    1. In the User Name field, type the user name.

      Note - You must have read access to the root\security name space to log in. By default, Solaris OS users have guest privileges, which grant them read access to the default name spaces. Users with read access can view but not change user privileges.

      You must log in as root or a user with write access to the root\security name space to grant access rights to users.

    2. In the Password field, type the password for the user account.
  4. Click OK.

    The User Manager dialog box opens. The dialog box contains a list of users and their access rights to WBEM objects within the name spaces on the current host.

How to Grant Default Access Rights to a User

  1. Start Sun WBEM User Manager.
  2. In the Users Access portion of the dialog box, click Add.

    A dialog box opens that lists the available name spaces.

  3. Type the name of a Solaris OS user account in the User Name field.
  4. Select a name space from the listed name spaces.
  5. Click OK.

    The user name is added to the User Manager dialog box.

  6. To save changes and close the User Manager dialog box, click OK. To save changes and keep the dialog box open, click Apply.

    The user that you specified is granted read access to CIM objects in the name space that you selected.

How to Change Access Rights for a User

  1. Start Sun WBEM User Manager.
  2. Select the user whose access rights you want to change.
  3. Set the user privileges. To grant the user read-only access, click the Read check box. To grant the user write access, click the Write check box.
  4. To save changes and close the User Manager dialog box, click OK. To save changes and keep the dialog box open, click Apply.

How to Remove Access Rights for a User

  1. Start Sun WBEM User Manager.
  2. In the Users Access portion of the dialog box, select the user name for which you want to remove access rights.
  3. Click Delete to delete the user's access rights to the name space.

    A confirmation dialog box opens. This dialog box prompts you to confirm your decision to delete the user's access rights.

  4. To confirm, click OK.
  5. To save changes and close the User Manager dialog box, click OK. To save changes and keep the dialog box open, click Apply.

How to Set Access Rights for a Name Space

  1. Start Sun WBEM User Manager.
  2. In the Namespace Access portion of the dialog box, click Add.

    A dialog box opens. The dialog box lists the available name spaces.

  3. Select the name space for which you want to set access rights.

    Note - By default, users have read-only access to a name space.

    • To allow no access to the name space, make sure that the Read and Write check boxes are not selected.

    • To allow write access, select Write.

    • To allow read access, select Read.

  4. To save changes and close the User Manager dialog box, click OK. To save changes and keep the dialog box open, click Apply.

How to Remove Access Rights for a Name Space

  1. Start Sun WBEM User Manager.
  2. In the Namespace Access portion of the dialog box, select the name space for which you want to remove access control, and then click Delete.

    Access control is removed from the name space, and the name space is removed from the list of name spaces on the Sun WBEM User Manager dialog box.

  3. To save changes and close the User Manager dialog box, click OK. To save changes and keep the dialog box open, click Apply.
Copyright © 2005, Oracle and/or its affiliates. All rights reserved. Legal Notices
Previous Next