HP-UX Virtual Partitions Administrator's Guide (includes A.03.04) (previously titled Installing and Managing HP-UX Virtual Partitions)
Chapter 11
331
11 vPars Flexible Administrative Capability
(vPars A.03.03, A.03.04, vPars A.04.02, A.04.03, A.05.01)
This chapter discusses the concepts and tasks on using the vPars Flexible Administrative Capability feature
(formerly called Primary-Admin vPars Security). With this feature, you can specify vPars administration
capabilities for zero, one, or more designated virtual partitions. Only superusers within the designated
virtual partitions can perform the vPars administration commands that affect other virtual partitions; a
superuser within a non-designated virtual partition can perform only operations that affect itself.
Additionally, for this flexible administrative capability to work, all the virtual partitions must be running the
same version of vPars.
NOTE Applying RBAC to vPars A.04.01 Whitepaper
You can apply the existing HP-UX Security feature RBAC (Role-based Access Control) to vPars
A.04.01. For information, see the whitepaper titled Securing Virtual Partitions with HP-UX
Role-Based Access Control available at the HP Documentation web site: http://docs.hp.com.
HP-UX Security and other Security Applications
This feature is not intended to replace existing HP-UX security or security applications. It
provides as a way to limit intentional access but is not intended to substitute security or
security application that eliminate malicious or unintentional circumvention of commands or
provide kernel level security isolation. This feature is intended to address tighter vPars
administration control requirements in certain customer deployments.