RBAC (Role-Based Access Control) is a method of regulating access to computer or network resources based on the roles of individual users within an organization.
Questions tagged [rbac]
40 questions
15
votes
2 answers
sudo not working on certain commands
I have a rather weird problem with sudo on Debian 8. Users cannot execute some of commands in /etc/sudoers.d. I use Chef to distribute configurations, so all files are automatically generated.
Example:
This config works fine
root@server:~# cat…
Lain Iwakura
- 163
3
votes
1 answer
Grsecurity's RBAC policy for scripts
I have some problems with set right policy for my gentoo-based system. I have no idea how can I add permissions for everything which was started by /root/scripts/autosync. I am getting error like:
[code]grsec: (default:D:/) denied access of /etc for…
user58094
2
votes
3 answers
How to grant a Service Principal access to AKS API when RBAC and AAD integration are activated?
I need to grant a process (build pipeline) RBAC access to AKS API for deployment purposes.
But the target AKS cluster has AAD integration active (as described here)
I was expecting to be able to access the AKS API's with a simple Service Principal,…
Olivier Dauby
- 255
- 1
- 3
- 10
2
votes
1 answer
Group hierarchy in Active Directory
Is it possible to get group hierarchy in AD? It's for managing permissions to a web app from there.
I need to do this:
Users
Product
Admin
Task
Subtask1
Subtask2
Subtask3
Task 2
So if you are member of Admin you get reference to Task…
JorgeeFG
- 1,013
2
votes
1 answer
How to implement and modify policies for Role-based access control on Ubuntu Linux?
Selinux is currently installed on the machine but there's no simple way to enable and modify RBAC for users. Seedit is available for Fedora and CentOS but it is not working on Ubuntu distros.
Are there any other RBAC solutions that are supported on…
Dennis Y.
- 61
1
vote
2 answers
Can RBAC secure non-root owners files on aix 6.1?
Can i use the RBAC feature on Aix 6.1 to do the following.
file - myfile.txt
I have users - root , aixuser(non-root).
I want only aixuser to have access to file 'myfile.txt' and NOT the root user.
Can this be done with RBAC on aix 6.1?
rootuser
1
vote
1 answer
Custom permissions (RBAC) to access specific Azure AD blade
I am looking for a way of tailoring custom RBAC (granting access\creating role & assigning permissions) to specific Azure AD blade.
In fact, I want my end user with a custom role to be able to modify only certain settings in Azure AD blade.
Here's…
Sergey
- 153
- 1
- 7
1
vote
2 answers
Kubernetes Node Metrics Endpoint Returns 401
I have a GKE cluster which, for the sake of simplicity runs just Prometheus, monitoring each member node. Recently I recently upgraded the API server to 1.6 (which introduces RBAC), and had no issues. I then added a new node, running version 1.6…
pnovotnak
- 260
- 4
- 11
1
vote
1 answer
Azure security center recommandation: issues installing endpoint protection
i am having a hard time with applying the recommandations of the Azure security center for my Windows VMs: it asks to install endpoint protection, but the issue is that whenever i try to install it for one of my vms, the creation fails, saying that…
WintermeW
- 11
1
vote
1 answer
How to enable RBAC automatically
I think I'm missing something simple, but every time I try to gradm -E, I'm being asked for a password. How can I enable it automatically after boot? (so that no password is needed)
viraptor
- 1,176
1
vote
0 answers
How to define a Management Role Scope which includes multiple OUs in Exchange 2013?
I need to define several custom Management Roles in an Exchange 2013 environment, whose scopes must be limited to recipients in specific OUs; however, these OUs are at the same AD level with other ones, which must not be included in the role…
Massimo
- 72,827
1
vote
1 answer
Running a command as the root "role" in Solaris 11?
Ok, so we have a product which runs a daemon as root, which can communicate over TCP sockets and read / write files. This works fine in Solaris 10, but when we ported it across to Solaris 11, a load of write errors occur.
That is to say, the socket…
Rsaesha
- 360
1
vote
1 answer
Are you able to specify a the profile you want to use in pfexec?
Are you able to specify which profile you want to use for a given user when using pfexec who has been assigned multiple profiles?
One example for this use is so that we can execute a command as a different user within the same process. In…
jigjig
- 111
1
vote
0 answers
How do I remove a Classic Administrator when the role they are assigned to is missing?
In the Azure Portal I see
Action required: As of August 31, 2024, Azure classic administrator
roles (along with Azure classic resources, Azure Service Manager) are
retired and are no longer supported. If you still have active
Co-Administrator or…
Kirsten
- 195
1
vote
0 answers
ArgoCD RBAC granular permissions to rollback application
I have several applications on a Kubernetes cluster deployed using ArgoCD. One role needs to be able, among other things, to rollback a given application. I know that the line
p, role:default, applications, update, */*, allow
grants the rollback…
barmanthewise
- 133