HP-UX Reference (11i v3 07/02) - 1M System Administration Commands N-Z (vol 4)
r
roleadm(1M) roleadm(1M)
# roleadm assign John administrator
The following command will remove the line John:administrator
from /etc/rbac/user_role
file:
# roleadm revoke John administrator
The following command will remove all the roles for user
John from /etc/rbac/user_role
file:
# roleadm revoke John
The following command will remove all the roles for group name
users from /etc/rbac/user_role
file:
# roleadm revoke "&users"
The following command will list all the roles for user
Joe:
# roleadm list user=Joe
The following command will list all users and groups with role
sysAdmin:
# roleadm list role=sysAdmin
The following command will list entries with user Joe and rolename sysAdmin:
# roleadm list user=Joe role=sysAdmin
The following command will list entries with group name vts
# roleadm list user="&vts"
The following command will list all the entries in /etc/rbac/user_role
# roleadm list
FILES
/etc/rbac/roles Database containing valid definitions of all roles.
/etc/rbac/auths Database containing definitions of all valid authorizations.
/etc/rbac/user_role
Database specifying the roles allowed for each specified user.
/etc/rbac/role_auth
Database that defines the allowed authorization for each specified role.
/etc/rbac/cmd_priv
Database containing the authorization to execute specified commands and
the privileges to alter uid and gid for command execution.
SEE ALSO
authadm(1M), cmdprivadm(1M), privrun(1M), rbacdbchk(1M), rbac(5).
272 Hewlett-Packard Company − 3 − HP-UX 11i Version 3: February 2007