JavaScript is required to for searching.
Skip Navigation Links
Exit Print View
System Administration Guide: Security Services     Oracle Solaris 11 Express 11/10
search filter icon
search icon

Document Information

Preface

Part I Security Overview

1.  Security Services (Overview)

Part II System, File, and Device Security

2.  Managing Machine Security (Overview)

3.  Controlling Access to Systems (Tasks)

4.  Virus Scanning Service (Tasks)

5.  Controlling Access to Devices (Tasks)

6.  Using the Basic Audit Reporting Tool (Tasks)

7.  Controlling Access to Files (Tasks)

Part III Roles, Rights Profiles, and Privileges

8.  Using Roles and Privileges (Overview)

9.  Using Role-Based Access Control (Tasks)

Using RBAC (Task Map)

Configuring and Using RBAC (Task Map)

Configuring and Using RBAC

How to Plan Your RBAC Implementation

How to Make root User Into a Role

How to Create a Role

How to Assign a Role

How to Create a Privileged User

How to Audit Roles

How to Assume a Role

How to Obtain Administrative Rights

How to Restrict an Administrator to Explicitly Assigned Rights

Managing RBAC (Task Map)

Managing RBAC

How to Change the Password of a Role

How to Enable a User to Use Own Password to Assume a Role

How to Change the Properties of a Role

How to Create or Change a Rights Profile

How to Troubleshoot RBAC and Privilege Assignment

How to Change the RBAC Properties of a User

How to Add RBAC Properties to Legacy Applications

10.  Role-Based Access Control (Reference)

11.  Privileges (Tasks)

12.  Privileges (Reference)

Part IV Oracle Solaris Cryptographic Services

13.  Oracle Solaris Cryptographic Framework (Overview)

14.  Oracle Solaris Cryptographic Framework (Tasks)

15.  Oracle Solaris Key Management Framework

Part V Authentication Services and Secure Communication

16.  Using Authentication Services (Tasks)

17.  Using PAM

18.  Using SASL

19.  Using Solaris Secure Shell (Tasks)

20.  Solaris Secure Shell (Reference)

Part VI Kerberos Service

21.  Introduction to the Kerberos Service

22.  Planning for the Kerberos Service

23.  Configuring the Kerberos Service (Tasks)

24.  Kerberos Error Messages and Troubleshooting

25.  Administering Kerberos Principals and Policies (Tasks)

26.  Using Kerberos Applications (Tasks)

27.  The Kerberos Service (Reference)

Part VII Oracle Solaris Auditing

28.  Oracle Solaris Auditing (Overview)

29.  Planning for Oracle Solaris Auditing

30.  Managing Oracle Solaris Auditing (Tasks)

31.  Oracle Solaris Auditing (Reference)

Glossary

Index

Configuring and Using RBAC (Task Map)

To use RBAC effectively requires planning. Use the following task map to plan, initially implement, and use RBAC at your site.

Task
Description
For Instructions
1. Plan for RBAC
Involves examining your site's security needs, and deciding how to use RBAC at your site.
2. Configure users who can assume a role
Ensures that users who can assume an administrative role exist.
3. Create roles
Creates roles and assigns the roles to users
4. (Optional) Create privileged users
Creates users who are directly assigned privileges or authorizations.
5. (Recommended) Audit role actions
Preselect an audit class that includes an audit event that records role actions.
Assume a role
Uses the su command to switch to a role.
Become an administrator
Selects one of three methods to gain administrative rights.
Create a restricted profile shell
Prevents users or roles from full access to all commands in the software