authadm.1m (2010 09)
a
authadm(1M) authadm(1M)
EXTERNAL INFLUENCES
Environment Variables
LC_MESSAGES determines the language in which messages are displayed.
International Code Set Support
Single-byte character code set is supported.
RETURN VALUE
0 Success. If authadm is successful, it returns
0.
1 Failure.
authadm returns 1 and prints an appropriate error message to stderr.
EXAMPLES
The following commands each add an authorization (operation , object ) entry in the
/etc/rbac/auths
database file:
# authadm add hpux.printer.job.cancel printer6
# authadm add hpux.mount
# authadm add hpux.printer.bld3
The following commands each delete an authorization (operation , object ) entry from the
/etc/rbac/auths database file:
# authadm delete hpux.printer.job.cancel printer6
# authadm delete hpux.printer.bld3
The following commands each assign an authorization (operation , object ) pair to a role in
/etc/rbac/role_auth
database file:
# authadm assign administrator hpux.printer.job.cancel printer6
# authadm assign accountant hpux.db.admin
The following commands each assign a subrole to a role in /etc/rbac/role_auth
database file:
# authadm roleassign administrator printAdmin
# authadm roleassign administrator diskAdmin
The following commands each revokes an operation for the specified operation from a role in the
/etc/rbac/role_auth
file:
# authadm revoke role=administrator operation=hpux.printer.job.cancel
object=printer6
# authadm revoke role=accountant operation=hpux.db.admin
The following commands each revokes a subrole from the specified role in the /etc/rbac/role_auth
database file:
# authadm rolerevoke role=administrator subrole=printAdmin
# authadm rolerevoke role=administrator subrole=diskAdmin
The following command lists all the authorizations for the administrator
role:
# authadm list role=administrator
The following command lists all the entries with operation hpux.db.admin:
# authadm list operation=hpux.db.admin
The following command lists all the entries with object /etc/passed.
# authadm list object=/etc/passwd
The following command lists all the roles with their authorizations in /etc/rbac/auths
database:
# authadm list sys
FILES
/etc/rbac/roles Database containing valid definitions of all roles.
/etc/rbac/auths Database containing definitions of all valid authorizations.
/etc/rbac/user_role Database specifying the roles allowed for each specified user.
HP-UX 11i Version 3: September 2010 − 3 − Hewlett-Packard Company 3