When Edit Administrative Files is in the Authorizations Include
column, it grants the authorization to edit administrative files
via the pfedit command.
The authorization to edit can be restricted to a specific file
by granting the user this authorization adorned with the
absolute pathname of the file (e.g.,
solaris.admin.edit//etc/syslog.conf);
multiple instances of such specific authorizations can be granted.
The ability to modify the contents of some configuration
files can be used to escalate the privileges assigned to the user.
Assignment of an authorization to edit such a file,
or of a profile containing such an authorization,
should be considered equivalent to providing full privileged access.
If Edit Administrative Files is grayed, then you are not entitled
to Add or Remove this authorization.