Administration Tools for Trusted Extensions
Administration on a system that is configured with Trusted Extensions uses many of the same tools that are available in the Solaris OS. Trusted Extensions offers security-enhanced tools as well. Administration tools are available only to roles in a role workspace.
Within a role workspace, you can access commands, actions, applications, and scripts that are trusted. The following table summarizes these administrative tools.
Table 2–1 Trusted Extensions Administrative Tools|
Tool |
Description |
For More Information |
|---|---|---|
|
Provides a menu-based wizard for creating, installing, initializing, and booting zones. This script replaces the Trusted CDE actions that manage zones. The script also provides menu items for networking options, name services options, and for clienting the global zone to an existing LDAP server. txzonemgr uses the zenity command. |
See Creating Labeled Zones in Oracle Solaris Trusted Extensions Configuration Guide See also the zenity(1) man page. |
|
|
In Trusted CDE, actions in the Trusted_Extensions folder in the Application Manager folder |
Used to edit local files that the Solaris Management Console does not manage, such as /etc/system. Some actions run scripts, such as the Install Zone action. |
See Trusted CDE Actions and How to Start CDE Administrative Actions in Trusted Extensions. |
|
Used to administer the label ranges of devices, and to allocate or deallocate devices. |
See Device Allocation Manager and Handling Devices in Trusted Extensions (Task Map). |
|
|
Solaris Management Console |
Used to configure users, roles, rights, hosts, zones, and networks. This tool can update local files or LDAP databases. This tool can also launch the dtappsession legacy application. |
For basic functionality, see Chapter 2, Working With the Solaris Management Console (Tasks), in System Administration Guide: Basic Administration. For information that is specific to Trusted Extensions, see Solaris Management Console Tools. |
|
Solaris Management Console commands, such as smuser and smtnzonecfg |
Is the command-line interface for the Solaris Management Console. |
For a list, see Table 2–4. |
|
Label Builder |
Is also a user tool. Appears when a program requires you to choose a label. |
For an example, see How to Modify a User's Label Range in the Solaris Management Console. |
|
Trusted Extensions commands |
Used to perform tasks that are not covered by Solaris Management Console tools or CDE actions. |
For the list of administrative commands, see Table 2–5. |
- © 2010, Oracle Corporation and/or its affiliates