The Solaris Zones partitioning technology is new in the Solaris Express 2/04 release. See Solaris Zones Software Partitioning Technology. The related zonename enhancements that are described here were also introduced in the Solaris Express 2/04 release.
The zonename audit token records the name of the zone in which an audit event occurred. The zonename audit policy option determines, for all zones, whether the zonename token is included in audit records. If the criteria for audit class preselection vary between non-global zones, then you might want to analyze audit records by zone. The zonename audit policy enables you to postselect audit records by zone.
See “Auditing and Solaris Zones” in the System Administration Guide: Security Services.
For further information, see the audit.log(4), auditconfig(1M), and auditreduce(1M) man pages. See also “Using Solaris Auditing in Zones” in the System Administration Guide: Solaris Containers-Resource Management and Solaris Zones.