error message
object name
domain
name_service
authorization used
initial values
object name
domain
name_service
authorization used
deleted values
object name
domain
name_service
authorization used
changed values
Admin Server Authentication
admin (various)
SMC, WBEM, or AdminSuite
SMC: filesystem add
SMC server
SMC: filesystem delete
SMC server
SMC: filesystem modify
SMC server
SMC: network add
SMC server
SMC: network delete
SMC server
SMC: network modify
SMC server
SMC: printer add
SMC server
SMC: printer delete
SMC server
SMC: printer modify
SMC server
RBAC: role login
SMC server
/usr/bin/su
SMC: scheduled job add
SMC server
SMC: scheduled job delete
SMC server
SMC: scheduled job modify
SMC server
SMC: serial port add
SMC server
SMC: serial port delete
SMC server
SMC: serial port modify
SMC server
SMC: Use of Authorization
SMC server
authorization used
object name
SMC: User Manager add
SMC server
SMC: User Manager delete
SMC server
SMC: User Manager modify
SMC server
login: logout
various
login(1)
"logout" username
init
/sbin/init
/usr/sbin/init
/usr/sbin/shutdown
init level or zone name
terminal login
/usr/sbin/login
/usr/dt/bin/dtlogin
login(1)
dtlogin
rlogin
/usr/sbin/login
login(1) - rlogin
telnet login
/usr/sbin/login
login(1) - telnet
/usr/lib/ssh/sshd
zone login
/usr/sbin/login
zlogin(1)
error message
su
/usr/bin/su
su(1M)
"user name" of failed new user/role
passwd
various
passwd(1)
username if different than caller
desktop screen lock
desktop screen unlock
pfexec
/usr/bin/pfexec
pfexec(1)
working directory
command pathname
inetd
/usr/sbin/inetd
service name
client address
inetd command
inetd
/usr/sbin/inetd
service name
limit value
inetd
/usr/sbin/inetd
service name
limit value
inetd
/usr/sbin/inetd
service name
limit value, interval
New zone state
zone name
su
/usr/bin/su
su(1M)
su
/usr/bin/su
su(1M)
newgrp
group name
authorization used
mount point
device
options
hald
hald
hald
authorization used
mount point
device
hald
authorization used
pool
device
hald
authorization used
pool
device
authorization used
object class name
object name
create wifi security object
/usr/sbin/dladm
dladm(1M)
delete wifi security object
/usr/sbin/dladm
dladm(1M)
relabel file from one zone to another
setlabel(1)
setflabel(3TSOL)
authorization used
file relabeled
original label
new label
copy file to another zone
dtfile(1X)
authorization used
source file
source label
destination directory
destination label
next action
machine dependent argument
next action
uadmin shutdown
/sbin/uadmin
/usr/sbin/uadmin
uadmin(1M)
uadmin reboot
/sbin/uadmin
/usr/sbin/uadmin
uadmin(1M)
uadmin dump
/sbin/uadmin
/usr/sbin/uadmin
uadmin(1M)
uadmin freeze
/sbin/uadmin
/usr/sbin/uadmin
uadmin(1M)
uadmin remount
/sbin/uadmin
/usr/sbin/uadmin
uadmin(1M)
uadmin ftrace
/sbin/uadmin
/usr/sbin/uadmin
uadmin(1M)
uadmin swapctl
/sbin/uadmin
/usr/sbin/uadmin
uadmin(1M)
smbd
/usr/lib/smbsrv/smbd
domain
username
sid
smbd
/usr/lib/smbsrv/smbd
domain
username
VSCAN: quarantine infected file
/usr/lib/vscan/vscand
vscand(1M), ICAP RFC 3507 (Extensions)
infected file
ID - threat description
NDMP Connect
/usr/lib/ndmp/ndmpd
ndmpd(1M)
NDMP Disconnect
/usr/lib/ndmp/ndmpd
ndmpd(1M)
NDMP Backup
/usr/lib/ndmp/ndmpd
ndmpd(1M)
path to be backed up
local path of backup destination
remote ip address and port of backup destination
NDMP Restore
/usr/lib/ndmp/ndmpd
ndmpd(1M)
path to restore to
local path to restore from
remote ip address and port to restore from
authorization used
name
authorization used
property group type
svc.configd(1M)
svcadm(1M)
svc.configd(1M)
svcadm(1M)
svc.configd(1M)
svcadm(1M)
svc.configd(1M)
svcadm(1M)
svc.configd(1M)
svcadm(1M)
svc.configd(1M)
svcadm(1M)
svc.configd(1M)
svcadm(1M)
svc.configd(1M)
svcadm(1M)
svc.configd(1M)
svcadm(1M)
svc.configd(1M)
svcadm(1M)
svc.configd(1M)
svcadm(1M)
svc.configd(1M)
svcadm(1M)
svc.configd(1M)
svcadm(1M)
svc.configd(1M)
svcadm(1M)
svc.configd(1M)
svccfg(1M)
svc.configd(1M)
svccfg(1M)
svc.configd(1M)
svccfg(1M)
svc.configd(1M)
svccfg(1M)
svc.configd(1M)
svccfg(1M)
svc.configd(1M)
svccfg(1M)
svc.configd(1M)
svccfg(1M)
authorization used
name
snapshot name
svc.configd(1M)
svccfg(1M)
authorization used
name
snapshot name
svc.configd(1M)
svccfg(1M)
authorization used
old name
old snapshot
new name
new snapshot
svc.configd(1M)
svccfg(1M)
operation
imported file
svc.configd(1M)
svccfg(1M)
authorization used
name
type
value
svc.configd(1M)
svccfg(1M)
authorization used
name
type
value
svc.configd(1M)
svccfg(1M)
authorization used
name
svc.configd(1M)
svccfg(1M)
set CPU freq to minimal unless load increases
/usr/lib/hal/hald-addon-cpufreq
hald(1M)
authorization used
set CPU freq to Max
/usr/lib/hal/hald-addon-cpufreq
hald(1M)
authorization used
set CPU frequency threshold percentage
/usr/lib/hal/hald-addon-cpufreq
hald(1M)
authorization used
threshold percent 1-100
Attribute update
Password update
bad username
authorization failed
bad uid
unknown failure
password expired
Account is locked
Bad dial up
Invalid ID
Invalid password
Not on console
Too many failed attempts
Protocol failure
Excluded user
No anonymous
Invalid command
Standard input not a tty line
Program failure
chdir to home directory
Input line too long.
login device override
authorization bypass
login disabled
Account is locked
Bad dial up
Invalid ID
Invalid password
Not on console
Too many failed attempts
Protocol failure
Excluded user
No anonymous
Halt the processor(s)
Halt the processor(s) and turn off the power
Reboot the system using the kernel file
Interactive reboot
Save the system state to the state file
Check if system supports suspend to disk
Force suspend to disk even when threads of user
applications are not suspendable
Save the system state to memory
Check if system supports suspend to memory
Single-user reboot
Single-user interactive reboot
Do not sync filesystems on next A_DUMP
Prepare for AD_REUSABLE
Create reusable statefile
Revert to normal CPR mode (not reusable)
ftrace start
ftrace stop