Is this still an open question? I'm not sure I entirely understand exactly, but it looks like privs are being enforced correctly, but you're getting a success return value from nwamcfg when it should return a permission error of some kind?
-John Lizhong Li wrote: > Now I found only user 'profiles=Network Autoconf' can execute 'nwamcfg > -f ...' correctly, while users with > 'auths=solaris.network.autoconf.read' or > 'auths=solaris.network.autoconf.read,auths=solaris.network.autoconf.write,auths=solaris.network.autoconf.refresh' > can also get the return code 0 to indicate the action is executed > correctly though it failed indeed, this is confused. > > Lizhong > > Lizhong Li wrote: >> Anurag, >> >> I found there's no auth restriction for "nwamcfg -f ...", is it a defect ? >> >> bash-3.2$ /usr/sbin/nwamcfg -f nwamcfg_destroy_a.s >> Configuration read. >> bash-3.2$ echo $? >> 0 >> >> bash-3.2$ /usr/sbin/nwamcfg >> nwamcfg> list >> List error: Insufficient privileges for action >> >> >> >
