System Administration Guide: Security Services
Previous Next

Files With Privilege Information

The following files contain information about privileges.

Table 12-2 Files That Contain Privilege Information

File and Man Page

Keyword

Description

/etc/security/policy.conf

policy.conf(4)

PRIV_DEFAULT

Inheritable set of privileges for the system

PRIV_LIMIT

Limit set of privileges for the system

/etc/user_attr

user_attr(4)

defaultpriv keyword in user or role's entry

Value is usually set in the Solaris Management Console GUI

Inheritable set of privileges for a user or role

limitpriv keyword in user or role's entry

Value is usually set in the Solaris Management Console GUI

Limit set of privileges for a user or role

/etc/security/exec_attr

exec_attr(4)

privs keyword in the profile's entry for the command

Policy for the command must be solaris

List of privileges that are assigned to a command in a rights profile

syslog.conf

syslog.conf(4)

System log file for debug messages

Path set in priv.debug entry

Privilege debugging log


Note - Do not edit the exec_attr and user_attr databases directly. To administer privileges, use the Solaris Management Console, or commands such as smuser. For more information, see the smc(1M) and the smuser(1M) man pages. For procedures, see Managing Privileges (Task Map).


Previous Next