Solaris 10 8/07 Installation Guide: Network-Based Installations

ProcedureTo Perform an Interactive WAN Boot Installation

Use this installation method if you want to install keys and set client configuration information at the command line during the installation.

This procedure assumes that you are using HTTPS in your WAN installation. If you are performing an insecure installation that does not use keys, do not display or install the client keys.

  1. Assume the same user role as the web server user on the WAN boot server.

  2. Display the key value for each client key.

    # wanbootutil keygen -d -c -o net=net-ip,cid=client-ID,type=key-type

    The IP address of the subnet for the client you want to install.


    The ID of the client you want to install. The client ID can be a user-defined ID or the DHCP client ID.


    The key type you want to install on the client. Valid key types are 3des, aes, or sha1.

    The hexadecimal value for the key is displayed.

  3. Repeat the previous step for each type of client key you are installing.

  4. If the client system is currently running, bring the client to run level 0.

  5. At the ok prompt on the client system, set the network boot argument variables in OBP.

    ok setenv network-boot-arguments  host-ip=client-IP,router-ip=router-ip,

    Note –

    The line breaks in this command sample are included for formatting purposes only. Do not enter a carriage return until you finish typing the command.

    setenv network-boot-arguments

    Instructs the OBP to set the following boot arguments


    Specifies the IP address of the client


    Specifies the IP address of the network router


    Specifies the subnet mask value


    Specifies the host name of the client

    (Optional) http-proxy=proxy-ip:port

    Specifies the IP address and port of the network's proxy server


    Specifies the URL of the wanboot-cgi program on the web server

    Note –

    The URL value for thebootserver variable must not be an HTTPS URL. The URL must start with http://.

  6. At the client ok prompt, boot the system.

    ok boot net -o prompt - install
    net -o prompt - install

    Instructs the client to boot and install from the network. The wanboot program prompts the user to enter client configuration information at the boot> prompt.

    The boot> prompt is displayed.

  7. Install the encryption key.

    boot> 3des=key-value

    Specifies the hexadecimal string of the 3DES key that is displayed in Step 2.

    If you use an AES encryption key, use the following format for this command.

    boot> aes=key-value
  8. Install the hashing key.

    boot> sha1=key-value

    Specifies the hashing key value that is displayed in Step 2.

  9. Type the following command to continue the boot process.

    boot> go

    The client installs over the WAN.

  10. If prompted, type client configuration information on the command line.

    If the WAN boot programs do not find all the necessary installation information, the wanboot program prompts to provide the missing information. Type the additional information at the prompt.

Example 12–5 Interactive WAN Boot Installation

In the following example, the wanboot program prompts you to set the key values for the client system during the installation.

Display the key values on the WAN boot server.

# wanbootutil keygen -d -c -o net=,cid=010003BA152A42,type=sha1
# wanbootutil keygen -d -c -o net=,cid=010003BA152A42,type=3des

The previous example uses the following information.


Specifies the IP address of the client's subnet


Specifies the client's ID


Specifies the value of the client's HMAC SHA1 hashing key


Specifies the value of the client's 3DES encryption key

If you use an AES encryption key in your installation, change type=3des to type=aes to display the encryption key value.

Set the network boot argument variables in the OBP on the client.

ok setenv network-boot-arguments host-ip=,

The following variables are set.

Boot and install the client.

ok boot net -o prompt - install
Resetting ...

Sun Blade 100 (UltraSPARC-IIe), No Keyboard
Copyright 1998-2003 Sun Microsystems, Inc.  All rights reserved.
OpenBoot 4.x.build_28, 512 MB memory installed, Serial #50335475.
Ethernet address 0:3:ba:e:f3:75, Host ID: 83000ef3.

Rebooting with command: boot net -o prompt                            
Boot device: /pci@1f,0/network@c,1  File and args: -o prompt

boot> 3des=9ebc7a57f240e97c9b9401e9d3ae9b292943d3c143d07f04

boot> sha1=b482aaab82cb8d5631e16d51478c90079cc1d463

boot> go

The previous commands perform the following tasks.

See Also

For more information about how to display key values, see wanbootutil(1M).

For more information about how to set network boot arguments, see set(1).

For more information about how to boot a system, see boot(1M).