How to grant shutdown permission

Hello,
I have created two others account apart from the root account on my solaris 10 machine. Later i' ve realized that the simple accounts don't have right to shutdown the machine unless you switch to the root account.
So which permission should i give to the non-root account to be able to shutdown the system.
Thanks in advance

Built In - Role Based Access control http://docs.sun.com
Open Source - Sudo
Commercial - Symark.com
If it's a laptop use the power button but not from JDS!
alan

Similar Messages

Granting "shutdown" permission

For the past several hours, I have scoured the internet searching for an answer to what I thought would be a very simple question. Perhaps it is still a very simple procedure ... I am just at my wits end, though, as to how to do this.
What I want is for a "normal" user to be able to shutdown the system. I am running Solaris 10 on x86. I have tried the following:
Creating a new group, adding the users to this new group, and giving the group execute permission on /usr/sbin/shutdown. Did not work. I get the message "only the user root has permission to ... blah blah blah"
Then I tried usermod with the following parameters:
usermod -A solaris.system.shutdown [username]
didn't work.
I also made sure to newgrp [shutdown_group] before executing the shutdown command. Didn't work. (Did this after I added my users to the new shutdown group)
I have also created new roles (using the roleadd command) - didn't work. I have tried granting "All" permission and roles. I have tried granting "System Admin" permission. All to no avail. I have tried combinations of all of the above; I've tried all of them a second time and rebooted after each and every attempt thinking that maybe - just maybe - all I needed was a simple reboot. This was at 12:00 this afternoon. It's now 6:00.
Regardless of everything that I have tried, I continuously get the error message, "only user root has permission to execute /usr/sbin/shutdown"
What simple thing am I missing? Any help would be greatly appreciated.
Thanks,
Caleb

New to Solaris and I have the same problem. What did you mean by:
For the past several hours, I have scoured the internet searching for an answer to what I thought would be a very simple question. Perhaps it is still a very simple procedure ... I am just at my wits end, though, as to how to do this.
What I want is for a "normal" user to be able to shutdown the system. I am running Solaris 10 on x86. I have tried the following:
Creating a new group, adding the users to this new group, and giving the group execute permission on /usr/sbin/shutdown. Did not work. I get the message "only the user root has permission to ... blah blah blah"
Then I tried usermod with the following parameters:
usermod -A solaris.system.shutdown [username]
didn't work.
I also made sure to newgrp [shutdown_group] before executing the shutdown command. Didn't work. (Did this after I added my users to the new shutdown group)
I have also created new roles (using the roleadd command) - didn't work. I have tried granting "All" permission and roles. I have tried granting "System Admin" permission. All to no avail. I have tried combinations of all of the above; I've tried all of them a second time and rebooted after each and every attempt thinking that maybe - just maybe - all I needed was a simple reboot. This was at 12:00 this afternoon. It's now 6:00.
Regardless of everything that I have tried, I continuously get the error message, "only user root has permission to execute /usr/sbin/shutdown"
What simple thing am I missing? Any help would be greatly appreciated.
Thanks,
Caleb
Navy_Coder
Posts:2,097
Registered: 4/29/06 Re: Granting "shutdown" permission
May 21, 2007 12:27 AM (reply 1 of 1) (In reply to original post )
DOH! A few beers later I figured out my problem ...... in the prof_attr file ... there are THREE colons ...
I knew it was something stupid. Sorry for the wasted space ...
Posts:2,097
Registered: 4/29/06 Re: Granting "shutdown" permission
May 21, 2007 12:27 AM (reply 1 of 1) (In reply to original post )
DOH! A few beers later I figured out my problem ...... in the prof_attr file ... there are THREE colons ...
I knew it was something stupid. Sorry for the wasted space ...

How to grant user permission to create "Credential" and "Proxies"

Hi Team,
Kindly let me know how to grant permission for user to create "Credential" and "Proxies" on server:
Thanks in advance
Santosh

Can I revoke this permissions once I grant?
You can use DROP and REVOKE commands to do the opposite.
USE [msdb]
GO
ALTER ROLE [SQLAgentOperatorRole] DROP MEMBER [TestLogin1]
GO
USE [msdb]
GO
ALTER ROLE [SQLAgentReaderRole] DROP MEMBER [TestLogin1]
GO
USE [msdb]
GO
ALTER ROLE [SQLAgentUserRole] DROP MEMBER [TestLogin1]
GO
use [master]
GO
REVOKE ALTER ANY CREDENTIAL TO [TestLogin1] AS [sa]
GO
Cheers,
Vaibhav Chaudhari
[MCTS],
[MCP]

SSRS How to grant BROWSE permission for reports for all the application users?

Hello,
Problem Statement
I need to allow all of my application users to browse the SSRS reports via logging onto the Report Manager and to some other I even want them to use Report Builder to modify & upload the report.
How could I achieve this.
Environment & Current implementation
We use SQL Server 2012 reporting services.
Custom authentication has been implemented using IAuthenticationExtension Interface. For more details, please refer
this msdn link.
Currently, for each new user created in the application, the admin has to manually give BROWSER role to the username to enable that newly created user to browse the reports.
Is there any way in which we can give "everyone" the BROWSE permission and get rid of this manual permission granting process?
Please feel free to ask for any additional information you need to help me on this issue.
Thanks!
-Vinay Pugalia
If a post answers your question, please click "Mark As Answer" on that post or
"Vote as Helpful".
Web : Inkey Solutions
Blog : My Blog
Email : Vinay Pugalia

Hi vinaypugalia,
According to your description, you want to grant permissions for users to access report server in a batch, right?
In your scenario, you can use
script files( AddItemSecurity.rss and ConfigureSystemProperties.rss )with the Reporting Services SOAP API to assign permissions. It’s better that you add those users to a user group then run those script.
Similar thread for your reference:
SQL script to grant user permissions for SQL Server Reporting Services
Programmatically adding users to SSRS?
If you have any question, please feel free to ask.
Best regards,
Qiuyun Yu
Qiuyun Yu
TechNet Community Support

How to grant select permission to all the tables in the user

Hi All,
I have 5 tables in one user, now i want to give only select privilege to another user on those tables. Please help me to solve this issue.
Thanks in Advance.
Thanks and Regards,
chiranth

See following discussion: Re: Select Grant on another schema

How to grant write permission to external HDD

bought a new portable 1TB USB 3.0 Buffalo HDD, unable to transfer data, HDD is NTFS formatted but I am usin PARAGON NTFS for MAC. My other portable HDD of seagate is working fine. New Buffalo drive does not acknowledge WRITE permission its showing only READ.

Right-Click on the OU and select Properties
Select the "Security" tab
Select the "Advanced" tab
Select the "Add" button
Enter the security principal name
security principal
Ok
Properties tab
Apply to:
Descendant User objects
Permissions:
Read servicePrincipalName - Allow
Write servicePrincipalName - Allow
Ok
Ok
Ok
Paul Bergson
MVP - Directory Services
MCITP: Enterprise Administrator
MCTS, MCT, MCSE, MCSA, Security, BS CSci
2012, 2008, Vista, 2003, 2000 (Early Achiever), NT4
Twitter @pbbergs http://blogs.dirteam.com/blogs/paulbergson
Please no e-mails, any questions should be posted in the NewsGroup.
This posting is provided AS IS with no warranties, and confers no rights.

How toplink grant permission for direct field access

I know already know that if I need to direct access private or protected field of an instance I must grant supressAccessChecks to ReflectPermission class using policytool or edit java.policy file directly ...
but how Toplink grant this permission to ReflectPermission class since my java.policy file remain the original.
Kowit Laison

In my own experiences, the first release of JDK 1.2 had problems with reflection accessing private attributes. As you mentioned, you had to have a policy file that allowed TopLink access to reflectively access private attributes.
Since subsequent releases (1.2.x, 1.3, 1.4, etc), it always has "just worked". I.e., it seems to be default behavior of JVM's that you can acess private attributes through reflection. Sometimes some app servers come with startup scripts that have policies that change this default behavior and you have to override it, but in general, a vanilla JVM simply will allow private attribute access through reflection.
- Don

Grant read permission.

Hi All,
can anyone tell me that how to grant read permission on all tables of a database except tables that belong to system tablespace.
Thanks

Handle:      788442
Status Level:      Newbie
Registered:      Aug 14, 2010
Total Posts:      58
Total Questions:      17 (12 unresolved)
so many questions & so few answers.
how I can find out the tables name that not are in system tablespace.just modify the previously provided SQL

How to get the permission of a file in java

Hi All,
I need to get the permission's that are granted to a file and how to modify its permission.Which class in java is used for this purpose?Kindly give me a solution.Thanks in advance.

java.io.File class can be used.
File f = new File("filename");
S.O.P(f.canRead());
S.O.P(f.canWrite());You can set the attribute using Runtime class.
Runtime r = Runtime.getRuntime();
Process p =r.exec("attrib -r file");If you are working with unix,
r.exec("chmod -permissionoptions file");

Error while granting Java permission to Oracle user (schema)

Hi,
I am trying to grant java permission as sys to an Oracle schema 'RCA' as follows but am getting the error ORA-29532: Java call terminated by uncaught Java exception: java.lang.SecurityException: policy table update java.io.FilePermission, <<ALL FILES>>. Could anyone please tell me how to resolve this issue?
DECLARE
KEYNUM NUMBER;
BEGIN
SYS.DBMS_JAVA.GRANT_PERMISSION(
grantee => 'RCA'
,permission_type => 'SYS:java.io.FilePermission'
,permission_name => '<<ALL FILES>>'
,permission_action => 'execute'
,key => KEYNUM
END;
Error at line 1
ORA-29532: Java call terminated by uncaught Java exception: java.lang.SecurityException: policy table update java.io.FilePermission, <<ALL FILES>>
ORA-06512: at "SYS.DBMS_JAVA", line 752
ORA-06512: at line 4
Thanks in advance for your help.
Regards,
Raj
Edited by: 906041 on 4/01/2012 18:31
Edited by: 906041 on 4/01/2012 18:33

below worked for me
18:44:11 SQL> connect / as sysdba
Connected.
18:44:19 SQL> DECLARE
KEYNUM NUMBER;
BEGIN
SYS.DBMS_JAVA.GRANT_PERMISSION(
grantee => 'DBADMIN'
,permission_type => 'java.io.FilePermission'
,permission_name => '<<ALL FILES>>'
,permission_action => 'execute'
,key => KEYNUM
END;
18:44:20 2 18:44:20 3 18:44:20 4 18:44:20 5 18:44:20 6 18:44:20 7 18:44:20 8 18:44:20 9 18:44:20 10 18:44:20 11 18:44:20 12
PL/SQL procedure successfully completed.
18:44:36 SQL> 18:44:36 SQL> 18:44:36 SQL> Edited by: sb92075 on Jan 4, 2012 6:45 PM

What is the GRANT or permission setting that allows viewing of package body

For purposes of SOX and security/audit control, we log in under our network id's in our production environment. We have sourcecode compiled into Oracle seeded schemas ( APPS ) so that scheduled jobs are able to run with submitted from the Oracle Applications environment. We don't compile code into our personal network account areas.
I know how to GRANT EXECUTE privs so that we can execute a package in another schema, but what I want to do is to be able to view the sourcecode in another schema. Compile into APPS but be able to see the package body from my network id schema account.
I can't seem to find what the correct permission is anywhere. Granted I can look at DBA_SOURCE to get to it, but I want to use a tool like SQL Developer or TOAD to look at the code in a more presentable and easier to debug manner.
Any help ?

I guess you need GRANT DEBUG ON SCOTT.PKG TO U
SYS@LSC01> create or replace package scott.pk is procedure p; end pk;
2 /
Package created.
SYS@LSC01> create or replace package body scott.pk is procedure p is begin null; end; end pk;
2 /
Package body created.
SYS@LSC01> grant create session to u identified by u;
Grant succeeded.
SYS@LSC01> grant execute on scott.pk to u;
Grant succeeded.
SYS@LSC01> connect u/u
Connected.
U@LSC01> select text from all_source where name='PK';
TEXT
package       pk is procedure p; end pk;
U@LSC01> connect / as sysdba
Connected.
SYS@LSC01> grant debug on scott.pk to u;
Grant succeeded.
SYS@LSC01> connect u/u
Connected.
U@LSC01> select text from all_source where name='PK';
TEXT
package       pk is procedure p; end pk;
package body       pk is procedure p is begin null; end; end pk;

Granting roles permission to run packages created by somone else

Hi there,
I'm using Oracle 9i and I've written a package that has several functions that need to be run by a role other than the owner. I have 2 roles I granted execute permission on the package itself but when I log in to our app as another user with one of those granted roles, I get the 'insufficient privilege' error.
My DBA mentioned something about doing a pl/sql wrapper. I did a search under wrap in the oracle index and came up with a wrap utility. If this is what he meant, I don't understand how that helps with permissions if the wrap util just encrypts my package. How do the roles get permission to run it then?
Thanks
Evita

If you call the stored procedure from a PL/SQL block, there will be a problem that PL/SQL does not, by default, recognize privileges granted through a role. You can either make a direct grant or you can change the PL/SQL block to specify authid current_user.
Justin
Distributed Database Consulting, Inc.
http://www.ddbcinc.com/askDDBC

Granting security permission to applet

Hi,
I have an applet which writes a .txt file to local disk. I want to call it through Javascript. Can anyone pls let me know how I can grant security permission to my file writing applet through Javascript?
Thanks,
Prasanna

Hi Munsifuv. You might get more help on this and your other AX questions on an AX-specific forum. We can help with connecting Power Query to data sources, but aren't necessarily experts on configuring those sources.
Thanks,
Ehren

How can I get permission to use Apple's Airplay Technology for new and innovative Speaker System?

Hi there!
I want to integrate Airplay technology in a new and innovative Speaker System.
I've searched the internet, but couldn't find anything.
Does anybody know how to get the permission to use it?

Apple
1 Infinite Loop
Cupertino, CA 95014
408.996.1010
...ask to speak to someone about licen$ing.

How do I manually delete iTunes when I want to re-install the latest program? Error says I have no permission so how can I get permission?

How do I manually delete iTunes and all its bits prior to re-installing the version 11 when I get a message saying I don't have permission.
I am the sole owner of my p.c. and nobody else uses it. How do I "get permission" from my own p.c.?
The p.c. is a Dell Vostro running windows 7 (64 bit) After giving up and exiting iTunes there was an error notification saying msvcr 80 is missing from your computer...Also, when I went (blindly) to administrators etc there was a red question mark against a gobbledegook long line apart from David pc which is me. Would this be some malevelant thing? Help!

Hi David,
Open the start menu, then select Control Panel in the right hand column. Open the Programs and Features section, type Apple in the search box at top right. You need to uninstall the components in the order suggested in the user tip.
Once all have been uninstalled reboot and use Windows Explorer to locate the named folders and delete them. Then reinstall.
tt2

How to grant shutdown permission

Similar Messages

Maybe you are looking for