Uploaded image for project: 'Product Technical Learning'
  1. Product Technical Learning
  2. PTL-11318

RH415v7.5 : ch12s04: step 9 : create a new administrative devops user to restrict su access but not sudo

XMLWordPrintable

    • False
    • Hide

      None

      Show
      None
    • False
    • 12
    • ROLE
    • en-US (English)

      Please fill in the following information:

      URL: https://rol.redhat.com/rol/app/courses/rh415-7.5/pages/ch12s04
      Reporter RHNID: chetan-rhls
      Section Title:               h2. Lab: Restricting USB Device Access and Mitigating Risk with SELinux                                                         

      Issue description:  ch12s04: step 9 : create a new administrative devops user  to restrict su access but not sudo but then we map it to the sysadm_u SELinux user :

      but it does not restrict su access :

       

      Also  in the course we see that :

      so we should have used staff_u mapping right ?

       

      Steps to reproduce:

       

      Workaround:

       

      Expected result:

        1. image-2024-01-02-22-57-18-874.png
          image-2024-01-02-22-57-18-874.png
          258 kB
        2. image-2024-01-02-22-57-41-577.png
          image-2024-01-02-22-57-41-577.png
          118 kB
        3. image-2024-01-02-22-57-59-295.png
          image-2024-01-02-22-57-59-295.png
          189 kB

              rht-agarrigu Austin Garrigus
              chetan-rhls Chetan Tiwary
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: