Re: change builtin roles for non RC models
tazok <tazok.id0 <at> gmail.com>
2006-08-03 18:06:58 GMT
One question, why do you want to change them¿?
I think MAC is not for manage roles.
I believe that the purpose of MAC, FF, and others modules roles is to
permit the separation of the administration tasks of each model in an
independent way, as is, it's only an add-on, not a characteristic of
the model (for me).
AFAIK, MAC as is, is not prepared to use RBAC (well the categories is
a tiny approach). If you want roles use the Role Compatibility model
and if you would like them use both (an RC model and on top a MAC
model), to get one role access control based on rings.
2006/8/3, Chirag Pandya <cpandya <at> gmail.com>:
> > Sorry if this is a dummy question, I'm new in rsbac.
> > How can I change the security models roles default rigths? (eg. MAC
> > Role for an user can be Administrator, Security Officer, General user
> > or Auditor). I could create custom role only for RC.
> > Maybe I made anything wrong?
> For MAC, I don't think that you can create a MAC custom role - nor do
> I think that you can modify the default rights for the already created
> roles (unless of course you modify source code).