diff options
author | Rob Crittenden <rcritten@redhat.com> | 2011-11-23 16:59:21 -0500 |
---|---|---|
committer | Alexander Bokovoy <abokovoy@redhat.com> | 2011-12-09 16:46:25 +0200 |
commit | 55512dc938eb4a9a6655e473beab587e340af55c (patch) | |
tree | 27805ce2bcbd5b9fbb759cfab781ad3575a83792 /install/updates/50-ipaconfig.update | |
parent | a1c9e3618c9d0e03fc926031f2c65d92da7a8b03 (diff) | |
download | freeipa.git-55512dc938eb4a9a6655e473beab587e340af55c.tar.gz freeipa.git-55512dc938eb4a9a6655e473beab587e340af55c.tar.xz freeipa.git-55512dc938eb4a9a6655e473beab587e340af55c.zip |
Add SELinux user mapping framework.
This will allow one to define what SELinux context a given user gets
on a given machine. A rule can contain a set of users and hosts or it
can point to an existing HBAC rule that defines them.
https://fedorahosted.org/freeipa/ticket/755
Diffstat (limited to 'install/updates/50-ipaconfig.update')
-rw-r--r-- | install/updates/50-ipaconfig.update | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/install/updates/50-ipaconfig.update b/install/updates/50-ipaconfig.update new file mode 100644 index 00000000..9ed24d6f --- /dev/null +++ b/install/updates/50-ipaconfig.update @@ -0,0 +1,4 @@ +dn: cn=ipaConfig,cn=etc,$SUFFIX +default:ipaSELinuxUserMapOrder: guest_u:s0$$xguest_u:s0$$user_u:s0-s0:c0.c1023$$staff_u:s0-s0:c0.c1023$$unconfined_u:s0-s0:c0.c1023 +default:ipaSELinuxUserMapDefault: guest_u:s0 + |