> If you want to make root a role, then follow the > (trivial) procedure for > doing so from the manuals (Search docs.sun.com for > "make root a rule") thanks. so, I could just '-K type=role' the user root and assign the role to devsk(in the same login session). does this meet the locality requirement, that ONLY the user who is logged in from console can assume this role and ONLY from local login sessions (e.g. from local xterm allow but from a remote ssh disallow role assumption)? this kills remote system mgmt, but I am fine with that.
> Are you sure, because I can only reproduce what > you're seeing when -u 0 > is passed? Without that it works for me as expected. yes, everytime. I just did it now following roleadd, passwd and su - rr from devsk. what's disturbing is that 'roles' command doesn't list it as a role (with or without '-u 0'). This message posted from opensolaris.org _______________________________________________ opensolaris-discuss mailing list [email protected]
