To Assign the trusted_edit Editor to a Role

The /usr/dt/bin/trusted_edit script is a wrapper that launches an editing window using the $EDITOR environment variable. The wrapper audits all changes.

1. Assume the Security Administrator role and go to an ADMIN_LOW workspace.

2. If the trusted_edit command is not in one of the role's profiles, use the SMC Rights tool to add the trusted_edit command to the Custom rolename profile.

   Refer to the online help when modifying the rights profile.

   1. Add the /usr/dt/bin/trusted_edit script to the Custom rolename profile.

   2. Give the script the proc_audit_tcb privilege.

3. Make sure that the role has the Custom rolename profile assigned to it or subsumed in one of its assigned rights.