Implementing Solaris Role-Based Access Control with SMF for IBM Connect:Direct
Implementing role-based access control (RBAC) is optional. After you place under the control of SMF, only the root ID or a user ID with RBAC authorization for SMF is authorized to issue the SMF commands to stop and start IBM® Connect:Direct®. To authorize additional specific user IDs to stop and start IBM Connect:Direct, you must implement basic RBAC to grant authority to the user.
Many solutions exist for setting up RBAC on Solaris. If you frequently add users to or remove users from administration, consider creating role accounts and profiles. For additional RBAC information, see the Solaris System Administration Guide: Basic Administration and Solaris System Administration Guide: Advanced Administration. Consider using the following procedure if you enable only a few users.
The user ID is authorized to control only and can issue commands, including the following:
- svcadm enable connect-direct
- svcadm disable connect-direct
- svcadm refresh connect-direct