Coy Hile wrote: > I'm with Dale on this. Do we really want another local account required (or > n such accounts) in a situation where there are no local accounts but root?
This is is NOT forcing that situation nor is it even MAKING it the default. It only allows for a minor extension to what is already allowed. Today (and since Solaris 8) the 'root' account could be configured as an RBAC role. This means it can't login directly on /dev/console or over the network. This case extends sulogin to *allow* but not require the use of a username and password other than for the root account. This is to *allow* but not require that the root account can have no password at all. Like is done on MacOS X (the root account has no password). This is very similar to what is done with sudo in most cases, the end user password is used rather than su to root. This case is about making sulogin work similarly using the capabilities that Solaris has had since Solaris 8. -- Darren J Moffat
