https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606604#M35229 Nope, No Role Based stuff in HP-UX. As far as I know, that is purely a Solaris 8 thing.<BR /><BR />The closest thing I can think of is set up sudo (free) or PowerBroker ($$$$ from Symark) so that the various users can do what they need to do without actually logging in as root. Fri, 02 Nov 2001 18:45:58 GMT Patrick Wallek 2001-11-02T18:45:58Z https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606603#M35228 In Sun Solaris there is a way to create root equivalents. This can be done using Role Based Access Control (RBAC). I'm trying to set up a user in HP-UX with a kind of group administrator role (In order to change attributes to files and directories, and other small things). There is any RBAC thing in HP-UX?<BR />Or there is any other way to accomplish this task??? Fri, 02 Nov 2001 18:39:42 GMT https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606603#M35228 Jesus Tobon 2001-11-02T18:39:42Z https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606604#M35229 Nope, No Role Based stuff in HP-UX. As far as I know, that is purely a Solaris 8 thing.<BR /><BR />The closest thing I can think of is set up sudo (free) or PowerBroker ($$$$ from Symark) so that the various users can do what they need to do without actually logging in as root. Fri, 02 Nov 2001 18:45:58 GMT https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606604#M35229 Patrick Wallek 2001-11-02T18:45:58Z https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606605#M35230 HP has nothing built in to do this.<BR /><BR />Sudo is an freeware option.<BR />Symark's PowerBroker is a pretty decent way to do this as it doesn't change the kernel in order to operate. <BR />Computer Associate's has a product called Access Control which also does this exact thing. It is not cheap though and does integrate with the kernel. In fact, that product even allows you to change the access for the root user itself. Fri, 02 Nov 2001 18:51:03 GMT https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606605#M35230 Bernie Vande Griend 2001-11-02T18:51:03Z https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606606#M35231 Hi,<BR /><BR />Like Patrick said, you can use sudo or powerbroker. If you only want the user to change file permissions and such. add the user to all the group of users for whom you want to allow this capability.<BR /><BR />Am i making sense.<BR /><BR />hope this helps.<BR /><BR />Regds<BR /> Fri, 02 Nov 2001 18:52:21 GMT https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606606#M35231 Sanjay_6 2001-11-02T18:52:21Z https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606607#M35232 <BR />Write a perl script. It insures you give them what they need while protecting your system.<BR /><BR />live free or die<BR />harry Fri, 02 Nov 2001 19:31:23 GMT https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606607#M35232 harry d brown jr 2001-11-02T19:31:23Z https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606608#M35233 Hi,<BR /><BR />Your best bet is get 'sudo' which the best <BR />part of it is that is free. It is really<BR />simple to use and setup.<BR /><BR /><A href="http://hpux.connect.org.uk/hppd/hpux/Sysadmin/sudo-1.6.2b1/" target="_blank">http://hpux.connect.org.uk/hppd/hpux/Sysadmin/sudo-1.6.2b1/</A><BR /><BR />Or you can get the source code from <BR /><BR /><A href="http://www.courtesan.com/sudo" target="_blank">www.courtesan.com/sudo</A><BR /><BR />HTH<BR />-Michael Fri, 02 Nov 2001 19:39:11 GMT https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606608#M35233 Michael Tully 2001-11-02T19:39:11Z https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606609#M35234 Or you can get brave and turn on ACL's. But you'll hpux 11 or greater, with jfs 3.3.<BR /><BR />live free or die<BR />harry Fri, 02 Nov 2001 19:52:53 GMT https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606609#M35234 harry d brown jr 2001-11-02T19:52:53Z https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606610#M35235 or, if the function you're trying to delegate is one provided by sam, you can use sam functions to allow a designated set of non-root users access to that specific function or functions only via sam. Thu, 19 Dec 2002 14:53:32 GMT https://community.hpe.com/t5/operating-system-hp-ux/role-based-access-control/m-p/2606610#M35235 Edward Finneran 2002-12-19T14:53:32Z