| | | | |
| A |
| |
| | accessing the X server (  ) |
| |
| | accounts |
| | | creating ( ) |
| | | planning ( ) |
| |
| | Action failed. Reconnect to Solaris Zone? ( ) |
| |
| | actions, See administrative actions |
| |
| | adding |
| | | default routes for labeled zones ( ) |
| | | LDAP toolbox ( ) |
| | | local role with roleadd ( ) |
| | | local user with useradd ( ) |
| | | network databases to LDAP server ( ) |
| | | nscd daemon to every labeled zone ( ) |
| | | roles ( ) |
| | | shared network interfaces ( ) |
| | | Trusted Extensions to a Solaris system ( ) |
| | | users by using lpaddent ( ) |
| | | users who can assume roles ( ) |
| | | zone-specific network interface ( ) |
| | | zone-specific nscd daemon ( ) |
| |
| | Additional Trusted Extensions Configuration Tasks ( ) |
| |
| | addresses |
| | | sharing between global and labeled zones ( ) |
| | | specifying one IP address per system ( ) ( ) |
| |
| | administering, remotely by a role ( ) |
| |
| | administrative actions |
| | | Check Encodings ( ) |
| | | Clone Zone ( ) |
| | | Configure Zone ( ) |
| | | Copy Zone ( ) |
| | | Create LDAP Client ( ) |
| | | Initialize Zone for LDAP ( ) |
| | | Install Zone ( ) |
| | | Share Logical Interface ( ) |
| | | Share Physical Interface ( ) |
| | | Shut Down Zone ( ) |
| | | Start Zone ( ) |
| | | Zone Terminal Console ( ) ( ) ( ) |
| |
| | allocating devices |
| | | for copying data ( ) |
| | | tape drive ( ) |
| |
| | Associating Network Interfaces With Zones by Using CDE Actions (Task Map) ( ) |
| |
| | audit planning ( ) |
| |
| | auditing, planning ( ) |
| | | | |
| C |
| |
| | Cannot reach global zone ( ) |
| |
| | Check Encodings action ( ) |
| |
| | checking |
| | | label_encodings file ( ) |
| | | roles are working ( ) |
| |
| | checklists for initial setup team ( ) |
| |
| | chk_encodings command ( ) |
| |
| | Clone Zone action ( ) |
| |
| | collecting information |
| | | before enabling Trusted Extensions ( ) |
| | | for LDAP service ( ) |
| | | planning Trusted Extensions configuration ( ) |
| |
| | configuration files, copying ( ) |
| |
| | Configure Zone action ( ) |
| |
| | configuring |
| | | access to headless Trusted Extensions ( ) |
| | | as a role or as superuser? ( ) |
| | | LDAP for Trusted Extensions ( ) |
| | | LDAP proxy server for Trusted Extensions clients ( ) |
| | | network interfaces ( ) |
| | | Solaris Management Console for LDAP ( ) |
| | | Trusted Extensions labeled zones ( ) ( ) |
| | | Trusted Extensions software ( ) |
| |
| | Configuring an LDAP Proxy Server on a Trusted Extensions Host (Task Map) ( ) |
| |
| | Configuring an LDAP Server on a Trusted Extensions Host (Task Map) ( ) |
| |
| | Configuring the Solaris Management Console for LDAP (Task Map) ( ) |
| |
| | configuring Trusted Extensions |
| | | checklist for install team ( ) |
| | | headless access ( ) |
| | | initial procedures ( ) |
| | | labeled zones ( ) ( ) |
| | | task maps ( ) |
| |
| | console window, troubleshooting not opening ( ) |
| |
| | Copy Zone action ( ) |
| |
| | Create a new zone menu item ( ) ( ) |
| |
| | Create LDAP Client action ( ) |
| |
| | creating |
| | | accounts ( ) |
| | | accounts during or after configuration ( ) |
| | | home directories ( ) |
| | | home directory server ( ) |
| | | labeled zones ( ) |
| | | LDAP client ( ) |
| | | LDAP proxy server for Trusted Extensions clients ( ) |
| | | LDAP toolbox ( ) |
| | | local role with roleadd ( ) |
| | | local user with useradd ( ) |
| | | roles ( ) |
| | | users who can assume roles ( ) |
| | | zones ( ) ( ) |
| |
| | Creating Labeled Zones ( ) |
| |
| | Creating the Labeled Zones by Using CDE Actions (Task Map) ( ) |
| |
| | credentials, registering LDAP with the Solaris Management Console ( ) |
| | | | |
| D |
| |
| | deciding |
| | | to configure as a role or as superuser ( ) |
| | | to use a Sun-supplied encodings file ( ) |
| |
| | decisions to make |
| | | based on site security policy ( ) |
| | | before enabling Trusted Extensions ( ) |
| |
| | default routes, specifying for labeled zones ( ) |
| |
| | deleting, labeled zones ( ) |
| |
| | directories, for naming service setup ( ) |
| |
| | disabling, Trusted Extensions ( ) |
| |
| | domain of interpretation (DOI), entry in /etc/system file ( ) |
| |
| | dpadm service ( ) |
| |
| | dsadm service ( ) |
| | | | |
| L |
| |
| | label_encodings file |
| | | checking ( ) |
| | | installing ( ) |
| | | localizing ( ) |
| | | modifying ( ) |
| |
| | labeld service ( ) |
| | | disabling ( ) |
| | | troubleshooting ( ) |
| |
| | Labeled Zone Manager, See txzonemgr script |
| |
| | labeling |
| | | turning on labels ( ) |
| | | zones ( ) ( ) |
| |
| | labels |
| | | assigning to named zones ( ) ( ) |
| | | on trusted stripe ( ) |
| | | planning ( ) |
| | | specifying for zones ( ) ( ) |
| |
| | LDAP |
| | | enabling administration from a client ( ) |
| | | planning ( ) |
| |
| | LDAP configuration |
| | | creating client ( ) |
| | | for Trusted Extensions ( ) |
| | | Sun Ray servers, and ( ) |
| |
| | LDAP server |
| | | collecting information for ( ) |
| | | configuring multilevel port ( ) |
| | | configuring naming service ( ) |
| | | configuring proxy for Trusted Extensions clients ( ) |
| | | creating proxy for Trusted Extensions clients ( ) |
| | | installing in Trusted Extensions ( ) |
| | | planning for separation of duty ( ) |
| | | protecting log files ( ) |
| | | registering credentials with Solaris Management Console ( ) |
| |
| | log files, protecting Directory Server logs ( ) |
| |
| | logging in |
| | | to a home directory server ( ) |
| | | using rlogin command ( ) |
| |
| | login, remote ( ) |
| |
| | lpaddent command ( ) |
| | | | |
| R |
| |
| | rebooting |
| | | activating labels ( ) |
| | | enabling login to labeled zone ( ) |
| |
| | registering, LDAP credentials with the Solaris Management Console ( ) |
| |
| | remote logins, enabling for roles ( ) |
| |
| | removing, zone-specific nscd daemon ( ) |
| |
| | removing Trusted Extensions, See disabling |
| |
| | requirements for Trusted Extensions |
| | | Solaris installation options ( ) |
| | | Solaris installed systems ( ) |
| |
| | resolv.conf file, loading during configuration ( ) |
| |
| | rights profiles, customizing for separation of duty ( ) |
| |
| | roadmaps |
| | | Task Map: Configuring Trusted Extensions ( ) |
| | | Task Map: Preparing a Solaris System for Trusted Extensions ( ) |
| | | Task Map: Preparing For and Enabling Trusted Extensions ( ) |
| |
| | roleadd command ( ) |
| |
| | roles |
| | | adding local role with roleadd ( ) |
| | | creating Security Administrator ( ) |
| | | determining when to create ( ) |
| | | logging in remotely ( ) |
| | | separation of duty ( ) ( ) |
| | | verifying they work ( ) |
| |
| | root passwords, required in Trusted Extensions ( ) |
| |
| | routing, specifying default routes for labeled zones ( ) |
| | | | |
| S |
| |
| | screens, initial display ( ) |
| |
| | security |
| | | initial setup team ( ) |
| | | publications ( ) |
| | | root password ( ) |
| | | site security policy ( ) |
| |
| | Security Administrator role, creating ( ) |
| |
| | separation of duty |
| | | creating rights profiles ( ) |
| | | planning for ( ) |
| | | planning for LDAP ( ) |
| |
| | service management framework (SMF) |
| | | dpadm ( ) |
| | | dsadm ( ) |
| | | labeld service ( ) |
| |
| | Share Logical Interface action ( ) |
| |
| | Share Physical Interface action ( ) |
| |
| | Shut Down Zone action ( ) |
| |
| | site security policy |
| | | common violations ( ) |
| | | personnel recommendations ( ) |
| | | physical access recommendations ( ) |
| | | recommendations ( ) |
| | | tasks involved ( ) |
| | | Trusted Extensions configuration decisions ( ) |
| | | understanding ( ) |
| |
| | Solaris installation options, requirements ( ) |
| |
| | Solaris installed systems, requirements for Trusted Extensions ( ) |
| |
| | Solaris Management Console |
| | | configuring for LDAP ( ) |
| | | configuring LDAP toolbox ( ) |
| | | enabling LDAP toolbox to be used ( ) |
| | | initializing ( ) |
| | | loading a Trusted Extensions toolbox ( ) |
| | | registering LDAP credentials ( ) |
| | | troubleshooting ( ) ( ) |
| | | using Trusted Network Zone Configuration tool ( ) ( ) |
| | | working with Sun Java System Directory Server ( ) |
| |
| | Solaris Trusted Extensions, See Trusted Extensions |
| |
| | Start Zone action ( ) |
| |
| | starting |
| | | zones ( ) ( ) |
| |
| | Sun Java System Directory Server, See LDAP server |
| |
| | Sun Ray systems |
| | | LDAP servers, and ( ) |
| | | web site for documentation ( ) |
| |
| | svcs: Pattern 'labeld' doesn't match any instances ( ) |
| |
| | System Administrator role, restricting ( ) |
| | | | |
| T |
| |
| | tape devices, allocating ( ) |
| |
| | Task Map: Configuring Trusted Extensions ( ) |
| |
| | Task Map: Preparing a Solaris System for Trusted Extensions ( ) |
| |
| | Task Map: Preparing For and Enabling Trusted Extensions ( ) |
| |
| | tasks and task maps |
| | | Additional Trusted Extensions Configuration Tasks ( ) |
| | | Associating Network Interfaces With Zones by Using CDE Actions (Task Map) ( ) |
| | | Configuring an LDAP Proxy Server on a Trusted Extensions Host (Task Map) ( ) |
| | | Configuring an LDAP Server on a Trusted Extensions Host (Task Map) ( ) |
| | | Configuring the Solaris Management Console for LDAP (Task Map) ( ) |
| | | Creating Labeled Zones ( ) |
| | | Creating the Labeled Zones by Using CDE Actions (Task Map) ( ) |
| | | Headless System Configuration in Trusted Extensions (Task Map) ( ) |
| | | Preparing to Create Zones by Using CDE Actions (Task Map) ( ) |
| |
| | tcp_listen=true LDAP setting ( ) |
| |
| | toolboxes |
| | | adding LDAP server to tsol_ldap.tbx ( ) |
| | | loading in Trusted Extensions ( ) |
| | | Scope=LDAP ( ) |
| |
| | troubleshooting |
| | | accessing X server ( ) |
| | | console window not opening ( ) |
| | | Installation of these packages generated errors: SUNWpkgname ( ) ( ) |
| | | IPv6 configuration ( ) |
| | | Solaris Management Console ( ) ( ) |
| | | Solaris release that supports the labeld service ( ) |
| | | Trusted Extensions configuration ( ) |
| | | Trusted Network Zones Properties ( ) |
| |
| | Trusted Extensions |
| | | See also Trusted Extensions planning | |
| | | collecting information before enabling ( ) |
| | | decisions to make before enabling ( ) |
| | | differences from Solaris administrator's perspective ( ) |
| | | disabling ( ) |
| | | enabling ( ) |
| | | memory requirements ( ) |
| | | planning configuration strategy ( ) |
| | | planning for ( ) |
| | | planning hardware ( ) |
| | | planning network ( ) |
| | | preparing for ( ) ( ) |
| | | results before configuration ( ) |
| | | separation of duty ( ) |
| | | two-role configuration strategy ( ) |
| |
| | Trusted Extensions configuration |
| | | adding network databases to LDAP server ( ) |
| | | changing default DOI value ( ) |
| | | databases for LDAP ( ) |
| | | division of tasks ( ) |
| | | evaluated configuration ( ) |
| | | headless systems ( ) |
| | | initial procedures ( ) |
| | | initial setup team responsibilities ( ) |
| | | labeled zones ( ) ( ) |
| | | LDAP ( ) |
| | | reboot to activate labels ( ) |
| | | task maps ( ) |
| | | troubleshooting ( ) |
| |
| | Trusted Extensions network |
| | | adding zone-specific interface ( ) |
| | | adding zone-specific nscd daemon ( ) |
| | | enabling IPv6 ( ) |
| | | planning ( ) |
| | | removing zone-specific nscd daemon ( ) |
| | | specifying default routes for labeled zones ( ) |
| |
| | Trusted Extensions requirements |
| | | root password ( ) |
| | | Solaris installation ( ) |
| | | Solaris installed systems ( ) |
| |
| | Trusted Network Zones tool |
| | | assigning labels to named zones ( ) ( ) |
| | | troubleshooting ( ) |
| |
| | tsol_ldap.tbx file ( ) |
| |
| | txzonemgr script ( ) ( ) |
| | | | |
| Z |
| |
| | zenity script ( ) |
| |
| | ZFS, unsupported but fast zone creation method ( ) |
| |
| | ZFS pools, creating for cloning zones ( ) |
| |
| | Zone Console, output ( ) |
| |
| | Zone Terminal Console action |
| | | output ( ) ( ) |
| | | using ( ) |
| |
| | zones |
| | | adding network interface ( ) |
| | | adding nscd daemon to each labeled zone ( ) |
| | | associating zone names with labels ( ) ( ) |
| | | booting ( ) ( ) |
| | | creating ( ) |
| | | creating ZFS pool for cloning ( ) |
| | | customizing ( ) |
| | | deciding creation method ( ) |
| | | deleting ( ) |
| | | enabling login to ( ) |
| | | halting ( ) |
| | | initializing ( ) |
| | | initializing for LDAP ( ) |
| | | installing ( ) ( ) |
| | | isolating with default routes ( ) |
| | | removing nscd daemon from labeled zones ( ) |
| | | showing zone activity ( ) ( ) ( ) |
| | | shutting down ( ) |
| | | specifying a shared IP address ( ) |
| | | specifying default routes ( ) |
| | | specifying labels ( ) ( ) |
| | | specifying names ( ) ( ) |
| | | specifying one IP address for all zones ( ) ( ) |
| | | starting ( ) |
| | | troubleshooting access ( ) |
| | | troubleshooting installation ( ) |
| | | txzonemgr script ( ) |
| | | /usr/sbin/txzonemgr script ( ) ( ) |
| | | verifying status ( ) |
