Go to main content

Securing Systems and Attached Devices in Oracle® Solaris 11.4

Exit Print View

Updated: July 2019
 
 

Authorizing Users to Allocate a Device

A system administrator can enable users to allocate devices.

How to Authorize Users to Allocate a Device

Before You Begin

You must become an administrator who is assigned the User Security rights profile. Your rights profiles must include the solaris.auth.delegate authorization. For more information, see Using Your Assigned Administrative Rights in Securing Users and Processes in Oracle Solaris 11.4.

  1. Create a rights profile that contains the appropriate authorization and commands.

      Typically, you would create a rights profile that includes the solaris.device.allocate authorization. Follow the instructions in How to Create a Rights Profile in Securing Users and Processes in Oracle Solaris 11.4. Give the rights profile appropriate properties, such as the following:

    • Rights profile name: Device Allocation

    • Granted authorizations: solaris.device.allocate

    • Commands with privileges: mount with the sys_mount privilege, and umount with the sys_mount privilege

  2. (Optional) Create a role for the rights profile.
  3. Assign the rights profile to authorized users or authorized roles.

Next Steps

Teach the users how to use device allocation.

For examples of allocating removable media, see How to Allocate a Device.