Hi Grant,
We have predefined ACL sets, which integrated into build 99.
With ZFS delegated permissions, you can create a permission set that can
be re-used.
See the example 9-2 here:
http://docs.sun.com/app/docs/doc/817-2271/gbchv?l=en&q=permission+sets&a=view
zfs allow [-s] ... perm|@setname [,...] filesystem | volume
Permissions can be aggregated into permission sets and are identified by
the -s option. Permission sets can be used by other zfs allow commands
for the specified file system and its descendents. Permission sets are
evaluated dynamically, so changes to a set are immediately updated.
Permission sets follow the same naming conventions as ZFS file systems,
but the name must begin with an at sign (@) and can be no more than 64
characters in length.
Cindy
Grant Lowe wrote:> Hi all,
>
> Is there a simple way to grant blanket conditions to zpools? I know about
the individual commands, but I want to give our DBAs the permissions to
snapshot, clone, promote, rollback, rename, mount, etc. anything within their
zpools. I''m kind of new to delegations. Thanks.
> _______________________________________________
> zfs-discuss mailing list
> zfs-discuss at opensolaris.org
> http://mail.opensolaris.org/mailman/listinfo/zfs-discuss