Security Attributes in Files and Their Corresponding SMF Properties
The following tables list the variable names of security attributes in the files in the
/etc directory and their corresponding SMF
properties in the account-policy service.
-
Figure 6, Table 6, Login Security Attributes in Files and SMF
-
Figure 7, Table 7, Password Security Attributes in Files and SMF
-
Figure 8, Table 8, User Account Security Attributes in Files and SMF
-
Figure 9, Table 9, User Environment Security Attributes in Files and SMF
-
Figure 10, Table 10, Logging and su Security Attributes in Files and SMF
The SMF properties in Figure 6, Table 6, Login Security Attributes in Files and SMF can be modified when the config/etc_default_login
stencil in the account-policy service is enabled.
Table 6 Login Security Attributes in Files and SMF
|
|
|
|
/etc/security/policy.conf
|
login_policy/annotation
|
|
/etc/security/policy.conf
|
login_policy/clearance
|
|
/etc/default/login
|
login_policy/root_login_device
|
|
/etc/default/login
|
login_policy/disabletime
|
|
/etc/security/policy.conf
|
login_policy/lock_after_retries
|
|
/etc/security/policy.conf
|
login_policy/pam_policy
|
|
/etc/default/login
|
login_policy/password_required
|
|
/etc/default/login
|
login_policy/retries
|
|
/etc/default/login
|
login_policy/sleeptime
|
|
/etc/default/login
|
login_policy/timeout
|
|
/etc/security/policy.conf
|
login_policy/auto_unlock_time
|
|
The SMF properties in Figure 7, Table 7, Password Security Attributes in Files and SMF can be modified when the
config/etc_default_passwd stencil in the
account-policy service is enabled.
Table 7 Password Security Attributes in Files and SMF
|
|
|
|
/etc/security/policy.conf
|
password/crypt/default
|
|
/etc/security/policy.conf
|
password/crypt/algorithms_allow
|
CRYPT_ALGORITHMS_DEPRECATE
|
/etc/security/policy.conf
|
password/crypt/algorithms_deprecate
|
|
/etc/default/passwd
|
password/dictionary/db_dir
|
|
/etc/default/passwd
|
password/dictionary/word_list
|
|
/etc/default/passwd
|
password/dictionary/min_word_length
|
|
/etc/default/passwd
|
password/history
|
|
/etc/default/passwd
|
password/aging_defaults/max_days
|
|
/etc/default/passwd
|
password/complexity/max_repeats
|
|
/etc/default/passwd
|
password/aging_defaults/max_weeks
|
|
/etc/default/passwd
|
password/complexity/min_alpha
|
|
/etc/default/passwd
|
password/aging_defaults/min_days
|
|
/etc/default/passwd
|
password/complexity/min_diff
|
|
/etc/default/passwd
|
password/complexity/min_digit
|
|
/etc/default/passwd
|
password/complexity/min_lower
|
|
/etc/default/passwd
|
password/complexity/min_nonalpha
|
|
/etc/default/passwd
|
password/complexity/min_special
|
|
/etc/default/passwd
|
password/complexity/min_upper
|
|
/etc/default/passwd
|
password/aging_defaults/min_weeks
|
|
/etc/default/passwd
|
password/complexity/namecheck
|
|
/etc/default/passwd
|
password/complexity/passlength
|
|
/etc/default/passwd
|
password/aging_defaults/warn_days
|
|
/etc/default/passwd
|
password/aging_defaults/warn_weeks
|
|
/etc/default/passwd
|
password/complexity/whitespace
|
|
The SMF properties in Figure 8, Table 8, User Account Security Attributes in Files and SMF can be modified when the
config/etc_security_policyconf stencil in the
account-policy service is enabled.
Table 8 User Account Security Attributes in Files and SMF
|
|
|
|
/etc/security/policy.conf
|
rbac/default_auth_profiles
|
|
/etc/security/policy.conf
|
rbac/default_authorizations
|
|
/etc/security/policy.conf
|
rbac/console_user_profiles
|
|
/etc/security/policy.conf
|
rbac/default_privileges
|
|
/etc/security/policy.conf
|
rbac/default_limit_privileges
|
|
/etc/security/policy.conf
|
rbac/default_profiles
|
|
The SMF properties in Figure 9, Table 9, User Environment Security Attributes in Files and SMF can be modified when the
config/etc_default_login stencil in the account-policy
service is enabled.
Table 9 User Environment Security Attributes in Files and SMF
|
|
|
|
/etc/default/login
|
login/environment/set_shell
|
|
/etc/default/login
|
login/environment/hz
|
|
/etc/default/login
|
login/environment/path
|
|
/etc/default/login
|
login/environment/root_path
|
|
/etc/default/login
|
login/environment/timezone
|
|
/etc/default/login
|
login/environment/ulimit
|
|
/etc/default/login
|
login/environment/umask
|
|
The SMF properties in Figure 10, Table 10, Logging and su Security Attributes in Files and SMF can be modified when the
config/etc_default_login and config/etc_default_su
stencils in the account-policy service is enabled.
Table 10 Logging and su Security Attributes in Files and SMF
|
|
|
|
/etc/default/login
|
login/log/syslog
|
|
/etc/default/login
|
login/log/syslog_failed_attempts
|
|
/etc/default/su
|
su/log/device
|
|
/etc/default/su
|
su/environment/path
|
|
/etc/default/su
|
su/log/logfile
|
|
/etc/default/su
|
su/environment/path
|
|
/etc/default/su
|
su/log/syslog
|
|