HP-UX Role-Based Access Control B.11.23.03 Release Notes

ManualsBrandsHP ManualsSoftwareHP-UX 11i Role-based Access Control (RBAC) Software

HP-UX Role-Based Access Control

B.11.23.03 Release Notes

HP-UX 11i v2

Documentation Website:

http://www.docs.hp.com

Manufacturing Part Number : 5991-4853

E0206

U.S.A.

Summary of content (12 pages)

PAGE 1
HP-UX Role-Based Access Control B.11.23.03 Release Notes HP-UX 11i v2 Documentation Website: http://www.docs.hp.com Manufacturing Part Number : 5991-4853 E0206 U.S.A. © Copyright 2001 - 2006 © Hewlett-Packard Development Company, L.P.
PAGE 2
Legal Notices The information in this document is subject to change without notice. Hewlett-Packard makes no warranty of any kind with regard to this manual, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose. Hewlett-Packard shall not be held liable for errors contained herein or direct, indirect, special, incidental or consequential damages in connection with the furnishing, performance, or use of this material.
PAGE 3
HP-UX Role-Based Access Control B.11.23.03 HP-UX RBAC Overview HP-UX Role-Based Access Control B.11.23.03 The information in this document is for HP-UX Role-Based Access Control (RBAC) version B.11.23.03 only. HP-UX RBAC Overview HP-UX RBAC is an alternative to the traditional “all-or-nothing” root user model, which grants permissions to the root user for all operations, and denies permissions to non-root users for certain operations.
PAGE 4
HP-UX Role-Based Access Control B.11.23.
PAGE 5
HP-UX Role-Based Access Control B.11.23.03 HP-UX RBAC Overview HP-UX RBAC Manpages The following table lists and briefly describes the HP-UX RBAC manpages, which are installed with the product at /usr/share/man/.Z: Table 1 Manpage HP-UX RBAC B.11.23.03 Manpages Description rbac(5) Describes the HP-UX RBAC feature. acps(3) Describes the ACPS and its interfaces. acps.conf(4) Describes the ACPS configuration file and its syntax.
PAGE 6
HP-UX Role-Based Access Control B.11.23.03 New in HP-UX RBAC B.11.23.03 New in HP-UX RBAC B.11.23.03 The following is a list of the new content HP-UX RBAC B.11.23.03 delivers: • usability enhancement known as “Hierarchical Roles” that allows you to define relationships between roles.
PAGE 7
HP-UX Role-Based Access Control B.11.23.03 New in HP-UX RBAC B.11.23.03 Examples of Hierarchical Roles By assigning a sub-role to a role, you assign all the authorizations of the sub-role to that role. For example, consider the following two tables that compare the same roles and corresponding authorizations. Notice that Table 3, "Example Roles Configuration Using Hierarchical Roles in HP-UX RBAC B.11.23.
PAGE 8
HP-UX Role-Based Access Control B.11.23.03 New in HP-UX RBAC B.11.23.03 Changes to the authadm Command for Hierarchical Roles In HP-UX RBAC B.11.23.03 the authadm command, which edits authorization information in the /etc/rbac/role_auth and /etc/rbac/roles database files, includes new sub-commands and options to support hierarchical roles.
PAGE 9
HP-UX Role-Based Access Control B.11.23.03 Compatibility Information and Installation Requirements Compatibility Information and Installation Requirements The following are the minimum requirements to install and run HP-UX RBAC B.11.23.03. Hardware Requirements • HP 9000 Computers • HP Integrity Servers Disk Space Requirements • 560 KB on HP 9000 Computers • 900 KB on HP Integrity Servers Operating System Requirements • HP-UX 11i Version 2 (B.11.
PAGE 10
HP-UX Role-Based Access Control B.11.23.03 Acquiring HP-UX RBAC Acquiring HP-UX RBAC HP-UX RBAC is available free of charge at HP’s Software Depot, http://www.software.hp.com. Use the following steps to acquire HP-UX RBAC: Step 1. Go to HP’s Software Depot at http://www.software.hp.com Step 2. Search for HP-UX RBAC (keyword RBAC) and read the information on the HP-UX RBAC release page Step 3. Select Receive for Free >> at the bottom of the page Step 4. Enter your registration information Step 5.
PAGE 11
HP-UX Role-Based Access Control B.11.23.03 Installing HP-UX RBAC Installing HP-UX RBAC IMPORTANT Installing HP-UX RBAC B.11.23.03 on a system with previous versions of HP-UX RBAC already installed on it will overwrite the existing HP-UX RBAC database files only if the database files have not been modified. If you installed previous versions of HP-UX RBAC and modified the database files, installing HP-UX RBAC B.11.23.03 on that same system does not overwrite the existing HP-UX RBAC database files.
PAGE 12
HP-UX Role-Based Access Control B.11.23.03 Known Problems in HP-UX RBAC B.11.23.03 Removing (un-installing) HP-UX RBAC Use the following steps to remove (un-install) HP-UX RBAC B.11.23.03 from your HP-UX 11v2 systems: Step 1. Logon to your system as the root user. Step 2. Use the following command to remove HP-UX RBAC: # swremove AccessControl Step 3. Use the swlist AccessControl command to verify HP-UX RBAC was removed from the system.