Archive for January, 2014

Custom Roles Using RBAC in the Solaris OS

Role Based Access Control (RBAC) started shipping with the Solaris 8 release of Sun Microsystems’ UNIX operating system. It can now be found within the Solaris 8, 9, and 10 releases. Simply defined, RBAC is a security tool to allow any non-root users access to complete tasks, scripts, and so on, with superuser privileges. For example, you have a second-shift operator who has been tasked to reboot some servers. RBAC can be used to set up permissions for the operator to carry out this task, which normally requires superuser authority. This is done simply by first creating a user, or defining an existing user. Next, a role and profile are created, and the profile is assigned to the role. After the profile has been assigned to a valid role, the role is now assigned to the OS user. The profile will have associated with it the task or script that is required to be run.

Continue reading “Custom Roles Using RBAC in the Solaris OS” »