NAME | DESCRIPTION | FILE FORMAT | EXAMPLE | SEE ALSO | COLOPHON 

local.users(5)              SELinux configuration             local.users(5)

NAME         top

       local.users - The SELinux local users configuration file

DESCRIPTION         top

       The file contains local user definitions in the form of policy
       language user statements and is only found on older SELinux systems
       as it has been deprecated and replaced by the semange(8) services.
       This file is only read by selinux_mkload_policy(3) when SETLOCALDEFS
       in the SELinux config file (see selinux_config(5)) is set to 1.
       selinux_users_path(3) will return the active policy path to the
       directory where this file is located. The default local users file
       is:
              /etc/selinux/{SELINUXTYPE}/contexts/users/local.users
       Where {SELINUXTYPE} is the entry from the selinux configuration file
       config (see selinux_config(5)).

FILE FORMAT         top

       The file consists of one or more entries terminated with ';', each on
       a separate line as follows:
              user seuser_id roles role_id [[level level] [range range]];
       Where:
              user
                     The user keyword.
              seuser_id
                     The SELinux user identifier.
              roles
                     The roles keyword.
              role_id
                     One or more previously declared role identifiers.
                     Multiple role identifiers consist of a space separated
                     list enclosed in braces '{}'.
              level
                     If MLS/MCS is configured, the level keyword.
              level
                     The users default security level. Note that only the
                     sensitivity component of the level (e.g. s0) is
                     required.
              range
                     If MLS/MCS is configured, the range keyword.
              range
                     The current and clearance levels that the user can run.
                     These are separated by a hyphen '-' as shown in the
                     EXAMPLE section.

EXAMPLE         top

       # ./users/local.users
       user test_u roles staff_r level s0 range s0 - s15:c0.c1023;

SEE ALSO         top

       selinux(8), semanage(8), selinux_users_path(3), selinux_config(5),
       selinux_mkload_policy(3)

COLOPHON         top

       This page is part of the selinux (Security-Enhanced Linux user-space
       libraries and tools) project.  Information about the project can be
       found at ⟨https://github.com/SELinuxProject/selinux/wiki⟩.  If you
       have a bug report for this manual page, see 
       ⟨https://github.com/SELinuxProject/selinux/wiki/Contributing⟩.  This
       page was obtained from the project's upstream Git repository 
       ⟨https://github.com/SELinuxProject/selinux⟩ on 2017-07-05.  If you
       discover any rendering problems in this HTML version of the page, or
       you believe there is a better or more up-to-date source for the page,
       or you have corrections or improvements to the information in this
       COLOPHON (which is not part of the original manual page), send a mail
       to man-pages@man7.org
Security Enhanced Linux          28-Nov-2011                  local.users(5)

Pages that refer to this page: booleans(5)selinux_config(5)