AIX

AIX

Connect with fellow AIX users and experts to gain knowledge, share insights, and solve problems.

 View Only

  • 1.  RBAC

    Posted Mon May 10, 2010 01:44 AM

    Originally posted by: MageshD


    In our environment we are using weblogic as a webserver and we used to start/stop the weblogic server by sudo.

    We heard RBAC is new feature in AIX6.1 and we are testing with the same to start/stop the weblogic instead of sudo. Actually webserver using previlleged ports 80/443 ,so i have given privilege PV_NET_PORT and even i have tried with PV_ROOT privilege also ,not helped.

    syntax used:

    mkauth webstart

    setsecattr -c accessauths=webstart innateprivs=PV_NET_PORT secflags=FSF_EPS /app/elm849/webserv/ELMDMO/bin/startPIA.sh

    mkrole authorizations=webstart webstartrole

    chuser roles=webstartrole psoft

    setkst

    su - psoft

    swrole webstartrole

    above steps have been used ,but not helped.....

    Anyone have experienced about RBAC ,pls help....


  • 2.  Re: RBAC

    Posted Sun June 13, 2010 11:22 PM

    Originally posted by: rsandeep


    There looks to be some incorrect steps being carried. Please look at the following article

    Understanding advanced AIX features: Role-based access control in simple steps
    http://www.ibm.com/developerworks/aix/library/au-aix_rbac/index.html

    esp the examples and also refer the RBAC section in IBM Redbook:
    AIX V6 Advanced Security Features Introduction and Configuration
    http://www.redbooks.ibm.com/abstracts/sg247430.html


Related Content