System Administration Guide: Security Services


	www.sun.com	docs.sun.com \|


Index


	Q question mark (?) wildcard character in ASET tune files , `quit` subcommand `sftp` command , R `-R` option `ssh` command , , `-r` praudit output format , raw praudit output format , RBAC administration commands , authorization database , basic concept , database relationships , elements , name services , rights profile database , tasks , adding custom roles , adding first role , adding first user , adding rights profile example , adding roles , adding roles from command line , changing rights profiles from command line , changing roles from command line , changing user properties from command line , checking scripts or programs for authorizations , configuration , editing rights profiles , information management task map , modifying roles , modifying users , planning , running the user tools , securing legacy applications , securing scripts , setting IDs on commands , using privileged applications , `rc` file description , `rcp` command authentication , read into keytab buffer with `read_kt` command , read into keytab with `read_kt` command , `read_kt` command , , read permissions symbolic mode , readable audit record format converting audit records to , , , , reallocating devices , realms and servers , configuration decisions , configuring cross-realm authentication , contents of , direct , hierarchical , hierarchical or non-hierarchical , hierarchy , in principal names , in principals names , mapping hostnames onto , names , number of , reducing audit files , storage-space requirements for audit files , reducing audit files `auditreduce` command , , remote logins authentication , authorization , security and , remote systems logging in authentication , authorization , removing principals with `ktremove` command , service principal from keytab file , renewable ticket definition , replayed transactions , reports ASET , , , , reports directory (ASET) , `required` control flag PAM , `requisite` control flag PAM , restoring ASET , restricted shell `(rsh`) , restricting access for KDC servers , `return` token format , `rewoffl` option `mt` command BSM device cleanup and , `rexd` service name PAM , `.rhosts` file description , role in authentication , `rhosts` module description , `RhostsAuthentication` keyword `sshd_config` file , `RhostsRSAAuthentication` keyword `sshd_config` file , right See rights profile rights profile See also individual profiles changing rights profiles from command line , creation example , database See `prof_attr` database and `exec_attr` database description , , editing , major rights profiles description , Rights tool description , `rlogin` command authentication , `rlogin` service name PAM , role adding custom roles , adding first role , , adding roles , adding roles from command line , assuming , assumption example , changing roles from command line , description , , making `root` a role , modifying roles , properties summarized , recommended role rights profiles , recommended roles , use in RBAC , role-based access control See RBAC Role Properties dialog box description , `roleadd` command description , `roledel` command description , `rolemod` command description , `roles` command description , `roles` module description , `root` adding principal to host's keytab , authentication for NFS , eliminating root in RBAC , `root` access displaying attempts on console , , monitoring `su` command use , , , restricting , , , `root` login account access restrictions , description , restricting to console , tracking , `root` principal creating , , `root` role creating , RPCSEC_GSS API SEAM and , `RSAAuthentication` keyword `sshd_config` file , `rsh` command (restricted shell) , `rsh` service name PAM , running the User tool task description ,