About User and Role Account Management

Managing user and role accounts is done by roles in an administrative role workspace, using either:

User and Role Account Tools in SMC

The following tools for managing user and role accounts are in the SMC under Trusted Solaris Configuration->Users:
User Accounts
  Add or delete, and maintain user accounts: specify base Solaris attributes. Assign optional roles and rights profiles. If default Trusted Solaris security attributes are not acceptable, specify new values.
User Templates
  Add and maintain templates for use when adding new user accounts. For example, if you do not want to accept the default /bin/sh(1) assigned by the Add User->With Wizard dialog to each new account, you can specify another shell in a template, give the template a name, specify the new template in the Action->User Policies dialog, and the template then loads by default when you select Action->Add User From Template.
Rights
  Modify or delete the existing rights profiles, or add new ones.
Roles
  Modify or delete the existing roles, or add new ones.
Groups
  Modify or delete the existing groups of users, or add new groups. Add users and roles to groups or delete them.
Mailing Lists
  Add, modify or delete mailing lists (which are also known as mail aliases). Add users or roles to mailing lists or delete them.

SMC Commands

For additional information about each command, see its man page.

SMC Management

smc(1M) [open the Solaris Management Console (SMC) or edit the toolboxes]

smcconf(1M) [configure the Solaris Management Console (SMC)]

User Management

Individual commands shown here can be used to manage users through the command line interface.

smuser(1M) [add, delete, modify, or list a user]

smmultiuser(1M) [add, delete, or modify multiple user entries]

smgroup(1M) [add, delete, modify, or list a group]

smmaillist(1M) [add, delete, modify, or list email alias entries]

smrole(1M) [add, delete, modify, or list a role and users assigned to role accounts]

smprofile(1M) [add, delete, modify, or list rights profile(s) in the prof_attr(4) or exec_attr(4) databases]

smexec(1M) [add, delete, or modify attributes of executables ]

smattrpop(1M) - populate security attribute databases in a name service

smcron(1M) [add, delete, modify, or list jobs in the crontab database ]