Next: 1.2 How RBAC works
Up: 1 What is RBAC
Previous: 1 What is RBAC
Contents
SPDL supports configuration of RBAC(Role Based Access Control).
In default policy, the domain for login user is unconfined_t.
So, the behavior of user is not confined by SELinux.
To increase security of login user, RBAC is useful.
By using RBAC, you can restrict behavior of users by assigning role to
user. For example, you can assign role webmaster_r to user webmaster,
and give him rights to do web master work.
2006-07-05