On Thu, Jun 29, 2006 at 06:08:18PM -0500, James Dickens wrote:
> I think I have found a bug in ZFS profiles as defined in
> # uname -av
> SunOS enterprise 5.11 snv_39 sun4u sparc SUNW,Ultra-2
> #
>
> # usermod -P "ZFS File System Management" zfsadmin
>
> # su zfsadmin
>
> # zfs create pool2/testzfsprofile
> cannot create 'pool2/testzfsprofile': permission denied
> # ppriv -De zfs create pool2/testzfsprofile
> zfs[5300]: missing privilege "sys_mount" (euid = 150026, syscall = 54)
> needed at zfs_secpolicy_parent+0x68
> cannot create 'pool2/testzfsprofile': permission denied
> #
>
> shouldn't a user with ZFS FileSystem Mangement profile be able to
> create and mount a ZFS file system? is there something i'm missing
> here?
Yeah; you need to be using a profile shell to get access to profile-enabled
commands:
$ zfs create pool/aux2
cannot create 'pool/aux2': permission denied
$ pfksh
$ zfs create pool/aux2
$ exit
$
Either set your shell to pf{k,c,}sh, or run it explicitly.
Cheers,
- jonathan
--
Jonathan Adams, Solaris Kernel Development
_______________________________________________
zfs-discuss mailing list
zfs-discuss@opensolaris.org
http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
