Modifying And Setting Privileges - Novell LINUX ENTERPRISE SERVER 11 - SECURITY Manual
Hide thumbs
Also See for LINUX ENTERPRISE SERVER 11 - SECURITY:
- Installation (5 pages) ,
- Administration manual (452 pages)
Table of Contents
Advertisement
A user can either authorize by authenticating as root or by authenticating as self. Both
authentication methods exist in four variants:
Authentication
The user always has to authenticate
One Shot Authentication
The authentication is bound to the instance of the program currently running. Once
the program is restarted, the user is required to authenticate again.
Keep Session Authentication
The authentication dialog box offers a check button Remember authorization for
this session. If checked, the authentication is valid until the user logs out.
Keep Indefinitely Authentication
The authentication dialog box offers a check button Remember authorization. If
checked, the user has to authenticate only once.
9.2.2 Explicit Privileges
Explicit privileges can be granted to specific users. They can either be granted without
limitations, or, when using constraints, limited to an active session and/or a local console.
It is not only possible to grant privileges to a user, a user can also be blocked. Blocked
users will not be able to carry out an action requiring authorization, even though the
default implicit policy allows authorization by authentication.
9.3 Modifying and Setting Privileges
To modify implicit privileges or to set explicit ones, you can either use the graphical
Authorizations tool available with GNOME, use the command line tools shipped with
PolicyKit, or modify the configuration files. While the GUI and the command line tools
are a good solution for making temporary changes, editing the configuration files should
be the preferred way to make permanent changes.
PolicyKit
123
Advertisement
Table of Contents
Need help?
Do you have a question about the LINUX ENTERPRISE SERVER 11 - SECURITY and is the answer not in the manual?