Re: How to determine the role of a user

[Daniel J Walsh <dwalsh redhat com>]

Anurup Mishra wrote:

> Hi,
>
> I am new to SELinux and recently I am able to install
> Fedora Core 2 test 2 on on machine.
>
> I want to implement a role based access control in one
> of my Java Stand Alone application. 
>
> During experimentation, when I tried to find the
> context of an another user as root, I got following
> message:
> [root v60x-1 root]# id --context n1gsps
> id: cannot display context when selinux not enabled or
> when displaying the id of a different user
>
> Now my first question is how do I figure out the role
> of another user. Do I need to tweak the policy to
> achieve this?? Could someone please navigate me on
> this.
>
> Second, how do I figure out the role of a user from a
> Java Application. As of now I am trying id command
> from java exec. Please suggest if you know any better
> alternative.
>
> warm regards,
>
> Anurup Mishra
>
>  
ps Z | grep username  would give you all the processes run by the user, and
the context they are running in.  Since a user can be in multiple roles 
in different
process id -Z username does not make sense.

> 	
> 		
> __________________________________
> Do you Yahoo!?
> Yahoo! Tax Center - File online by April 15th
> http://taxes.yahoo.com/filing.html
> --
> fedora-selinux-list mailing list
> fedora-selinux-list redhat com
> http://www.redhat.com/mailman/listinfo/fedora-selinux-list
>