Rights Profiles for Administering Auditing - Oracle Solaris 11.1 Administration: Security Services

Skip Navigation Links
Exit Print View
	Oracle Solaris 11.1 Administration: Security Services Oracle Solaris 11.1 Information Library

Oracle Technology Network

Document Information

Part I Security Overview

1. Security Services (Overview)

Part II System, File, and Device Security

2. Managing Machine Security (Overview)

3. Controlling Access to Systems (Tasks)

4. Virus Scanning Service (Tasks)

5. Controlling Access to Devices (Tasks)

6. Verifying File Integrity by Using BART (Tasks)

7. Controlling Access to Files (Tasks)

Part III Roles, Rights Profiles, and Privileges

8. Using Roles and Privileges (Overview)

9. Using Role-Based Access Control (Tasks)

10. Security Attributes in Oracle Solaris (Reference)

Part IV Cryptographic Services

11. Cryptographic Framework (Overview)

12. Cryptographic Framework (Tasks)

13. Key Management Framework

Part V Authentication Services and Secure Communication

14. Using Pluggable Authentication Modules

15. Using Secure Shell

16. Secure Shell (Reference)

17. Using Simple Authentication and Security Layer

18. Network Services Authentication (Tasks)

Part VI Kerberos Service

19. Introduction to the Kerberos Service

20. Planning for the Kerberos Service

21. Configuring the Kerberos Service (Tasks)

22. Kerberos Error Messages and Troubleshooting

23. Administering Kerberos Principals and Policies (Tasks)

24. Using Kerberos Applications (Tasks)

25. The Kerberos Service (Reference)

Part VII Auditing in Oracle Solaris

26. Auditing (Overview)

27. Planning for Auditing

28. Managing Auditing (Tasks)

29. Auditing (Reference)

Audit Service Man Pages

Rights Profiles for Administering Auditing

Auditing and Oracle Solaris Zones

Audit Configuration Files and Packaging

Audit Class Syntax

Audit Remote Server

Audit Policies for Asynchronous and Synchronous Events

Process Audit Characteristics

Conventions for Binary Audit File Names

Audit Record Structure

Audit Record Analysis

Audit Token Formats

argument Token

attribute Token

exec_args Token

exec_env Token

ip address Token

ip port Token

IPC_perm Token

path_attr Token

privilege Token

process Token

sequence Token

subject Token

trailer Token

use of authorization Token

use of privilege Token

xclient Token

zonename Token

Rights Profiles for Administering Auditing

Oracle Solaris provides rights profiles for configuring the audit service, for enabling and disabling the service, and for analyzing the audit trail. To edit an audit configuration file requires the privileges of root.

Audit Configuration – Enables an administrator to configure the parameters of the audit service and to run the auditconfig command.
Audit Control – Enables an administrator to start, refresh, and disable the audit service and to run the audit command to start, refresh, or stop the service.
Audit Review – Enables an administrator to analyze audit records. This rights profile grants authorization to read audit records with the praudit and auditreduce commands. This administrator can also run the auditstat command.
System Administrator – Includes the Audit Review rights profile. An administrator with the System Administrator rights profile can analyze audit records.

To configure roles to handle the audit service, see Initially Configuring RBAC (Task Map).

Copyright © 2002, 2014, Oracle and/or its affiliates. All rights reserved. Legal Notices

Previous

Next