Hi, That is really strange. I'm on 2009.06 svn123 and I see the following number of lines:
auth_attr = 275 prof_attr = 127 The one clue that seems to be in both of your files is that items for Sun Cluster are present. I haven't tried to install it on OpenSolaris, but I would suspect that something went wrong and the files were truncated by the installation somehow. You should be able to restore it from a snapshot if you have one of the rpool. If not, I can send you the contents. *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* Octave J. Orgeron Solaris Virtualization Architect and Consultant Web: http://unixconsole.blogspot.com E-Mail: [email protected] *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* ----- Original Message ---- From: dennis mathews <[email protected]> To: [email protected] Sent: Wed, November 18, 2009 11:05:51 PM Subject: [sysadmin-discuss] RBAC database files /etc/security/auth_attr , prof_attr cleaned out. Has anyone come across their RBAC files ( 200906 - 111b ) being reduced from around 60-odd entries to less than 5 ? Are these files auto-generated now by any chance ? Below is the full contents of the files. Incidentally exec_attr still has all it's contents. I know this because I've got the fresh installs bootenv. $ cat /etc/security/auth_attr solaris.cluster.admin:::Manage Quorum Server Daemons:: solaris.cluster.read:::Print Quorum Server Configuration:: solaris.smf.manage.zfs-auto-snapshot:::Manage the ZFS Automatic Snapshot Service:: $ cat /etc/security/prof_attr Basic Solaris User::::auths=solaris.cluster.read Quorum Server Management::::auths=solaris.cluster.admin Looks very strange. I can't run pfexec anymore pfexec /usr/bin/cat /etc/shadow /usr/bin/cat: can't get execution attributes $profiles Primary Administrator Console User Basic Solaris User .. but none of these profiles have any entries in /etc/security/prof_attr $auths solaris.device.cdrw,solaris.cluster.read auths on the fresh install was solaris.* I have never tried directly editing these files nor have I changed any default profiles, or RBAC settings, so I'm confused how this might have happened. Could an update has caused this ? Possibly related to this is that my shutdown option from the menu has dissappeared. -- This message posted from opensolaris.org _______________________________________________ sysadmin-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/sysadmin-discuss _______________________________________________ sysadmin-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/sysadmin-discuss
