DOC HOME SITE MAP MAN PAGES GNU INFO SEARCH PRINT BOOK
 
Trusted facility management

TFM and administrative roles

To enhance security, not only has the power of superuser to override system restrictions been divided into separate process privileges, but the concept of an all-purpose administrator can be replaced with the concept of administrative roles. Each role is responsible for different areas of system or security administration.

The separation of responsibilities and abilities to perform sensitive system tasks into separate roles decreases the risk that an administrator will knowingly or unknowingly perform a task that violates the security policy.

You can use the adminuser command to assign administrators to roles. You may also define new roles using the adminrole command.


Next topic: Displaying commands and privileges for a role
Previous topic: Administrative roles

© 2004 The SCO Group, Inc. All rights reserved.
UnixWare 7 Release 7.1.4 - 22 April 2004