lianep at eng.sun.com wrote: > Gary Winiger writes: >> You greped user_attr(4). It showed auths not profs and a syntax error. >> user:qualifier:res1:res2:attr is the correct syntax >> maybe try echiquet::::auths=solaris.smf.manage.spsms > > Gary's correct about the problem. If you change your line (with 3 > ":::"s, rather than 4) to the above, it'll work. > > Just so folks know, Glenn Brunette did write a step-by-step example in > the form of a blueprint. > > http://www.sun.com/blueprints/0605/819-2887.pdf > > (It's also linked off the main SMF community page if you need to find it > again.) > > He uses roles rather than directly assigning auths to your user id, I > think. (Which I admit to finding a little confusing, so tend to > directly grant the auths to myself like you're trying to do. I'm > probably not the best person to give examples on how to correctly use > RBAC, but it usually works OK for me. :) )
This was just an example of one way that it could be done. In some of our customer environments, they do not want rights/auths granted directly to users. That's all. Certainly, either way will work. g
