Puppet Privileges and Authorizations
Use one of the following methods to gain the privilege you need to configure and administer Puppet. See Securing Users and Processes in Oracle Solaris 11.4 for more information about roles and profiles, including how to determine which role or profile you need.
- Roles
-
Use the
roles
command to list the roles that are assigned to you. Use thesu
command with the name of the role to assume that role. As this role, you can execute any commands that are permitted by the rights profiles that are assigned to that role. - Rights profiles
-
You must have the
Puppet Management
rights profile to administer Puppet. Use theprofiles
command to list the rights profiles that are assigned to you.Use one of the following methods to execute commands that your rights profiles permit you to execute:
-
Use a profile shell such as
pfbash
orpfksh
. -
Use the
pfexec
command in front of the command that you want to execute. In general, you must specify thepfexec
command with each privileged command that you execute.
-
- sudo command
-
Depending on the security policy at your site, you might be able to use the
sudo
command with your user password to execute a privileged command.