man pages section 1M: System Administration Commands

devpolicy(1M)

NAME

devpolicy– Configure device policy

SYNOPSIS

devpolicy

-s

-v

-f

policyfile

-r

rootdir

DESCRIPTION

devpolicy reads the /etc/security/tsol/device_policy file and, for each device node in the /devices tree, constructs device policy information and downloads the information to the kernel.

To be successful, devpolicy requires the trusted path attribute and the sys_devices privilege. If device policy has been downloaded by an earlier invocation of the command, devpolicy will fail. If a device has two or more device nodes that are assigned different policies in the device_policy file, devpolicy displays a warning.

ATTRIBUTES

See attributes(5) for descriptions of the following attributes:

ATTRIBUTE TYPE	ATTRIBUTE VALUE
Availability	SUNWtsr

OPTIONS

-s: Silent mode; suppresses non-critical warning messages.
-v: Verbose mode; displays all warning messages, including messages for unknown devices.
-f policyfile: Read policyfile instead of /etc/security/tsol/device_policy.
-r rootdir: Find devices under rootdir instead of /devices.

EXIT STATUS

0: Successful.
>0: An error occurred.

FILES

/etc/security/tsol/device_policy: Security policy configuration file for devices

Trusted Solaris 8 HW 12/02 Reference Manual

drvconfig(1M), device_policy(4)

SunOS 5.8 Reference Manual

attributes(5)

SunOS 5.8 Last Revised 7 May 1998