A system administrator can enable users to allocate devices.
Before You Begin
You must become an administrator who is assigned the User Security rights profile. Your rights profiles must include the solaris.auth.delegate authorization. For more information, see Using Your Assigned Administrative Rights in Securing Users and Processes in Oracle Solaris 11.4.
Typically, you would create a rights profile that includes the solaris.device.allocate authorization. Follow the instructions in How to Create a Rights Profile in Securing Users and Processes in Oracle Solaris 11.4. Give the rights profile appropriate properties, such as the following:
Rights profile name: Device Allocation
Granted authorizations: solaris.device.allocate
Commands with privileges: mount with the sys_mount privilege, and umount with the sys_mount privilege
Follow the instructions in Assigning Rights to Users in Securing Users and Processes in Oracle Solaris 11.4. Use the following role properties as a guide:
Role name: devicealloc
Role full name: Device Allocator
Role description: Allocates and mounts allocated devices
Rights profile: Device Allocation
This rights profile must be the first in the list of profiles that are included in the role.
Teach the users how to use device allocation.
For examples of allocating removable media, see How to Allocate a Device.