VIOS Role Based Authentication

General Discussions.

VIOS Role Based Authentication

Postby Steve » Mon Apr 18, 2016 3:04 pm

I needed to setup Role Based Authentication on the VIO Servers to allow the storage team to allocate storage to LPARs but I did not want to allow them full access.
VIOS Role Based Authentication was the solution and I finally got it working once I discovered the need to run the setkst command once roles and users were created.

# Create the role.
Code: Select all
mkrole authorizations=vios.device,vios.system.config.hostname STGAdmin

vios.system.config.hostname was added to allow the PS1 prompt to display the VIOS hostname.

# Create the user.
Code: Select all
mkuser  -attr roles=STGadmin default_roles=STGadmin stguser1


# Reload the Kernel Tables.
Code: Select all
setkst

Successfully updated the Kernel Authorization Table.
Successfully updated the Kernel Role Table.
Successfully updated the Kernel Command Table.
Successfully updated the Kernel Device Table.
Successfully updated the Kernel Object Domain Table.
Successfully updated the Kernel Domains Table.
Steve
 
Posts: 25
Joined: Fri Mar 25, 2011 1:00 pm

Return to General Discussions

Who is online

Users browsing this forum: No registered users and 1 guest

cron