Solaris 10 Role Based Access Control

Notes

List all defined privileges with a short description ppriv -vl

Examples

Create a role with basic and net_privaddr privilege
$ groupadd apache
$ roleadd -d /var/www -g apache -s /usr/bin/bash -c "Apache WebServer" apache
$ rolemod -K "defaultpriv=basic,net_privaddr" apache 

Role (~ user) apache can now bind port < 1024.