Solaris 9 12/03 Installation Guide

Task Map: Preparing to Install Over a Wide Area Network

The following table lists the tasks you need to perform to prepare for a WAN boot installation. Review the task description to determine if the task is required for your WAN boot installation configuration.

For a description of a secure WAN boot installation over HTTPS, see Secure WAN Boot Installation Configuration.
For a description of an insecure WAN boot installation, see Insecure WAN Boot Installation Configuration.

To use a DHCP server or a logging server, complete the optional tasks that are listed at the bottom of the table.

Table 40–1 Task Map: Preparing to Perform a WAN Boot Installation


Task	Description	For Instructions
Decide what security features you want to use in your installation.	Review the security features and configurations to decide what level of security you want to use in your WAN boot installation.	Protecting Data During a WAN Boot Installation Security Configurations Supported by WAN Boot (Overview)
Collect WAN boot installation information.	Complete the worksheet to record all the information you need to perform a WAN boot installation.	Gathering Information for WAN Boot Installations
Create the document root directory on the WAN boot server.	Create the document root directory and any subdirectories to serve the configuration and installation files. This task is required for both secure and insecure installation configurations.	Creating the Document Root Directory
Create the WAN boot miniroot.	Use the `setup_install_server` command to create the WAN boot miniroot. This task is required for both secure and insecure installation configurations.	SPARC: To Create a WAN Boot Miniroot
Install the `wanboot` program on the WAN boot server.	Copy the `wanboot` program to the document root directory of the WAN boot server. This task is required for both secure and insecure installation configurations.	Installing the `wanboot` Program on the WAN Boot Server
Install the `wanboot-cgi` program on the WAN boot server.	Copy the `wanboot-cgi` program to the WAN boot server's CGI directory. This task is required for both secure and insecure installation configurations.	To Copy the `wanboot-cgi` Program to the WAN Boot Server
Set up the `/etc/netboot` hierarchy.	Populate the `/etc/netboot` hierarchy with the configuration and security files that are required for a WAN boot installation. This task is required for both secure and insecure installation configurations.	Creating the `/etc/netboot` Hierarchy on the WAN Boot Server
Configure the web server to use secure HTTP for a more secure WAN boot installation.	Identify the web server requirements that are necessary to perform a WAN installation with HTTPS. This task is required for the secure installation configuration.	(Optional) Protecting Data by Using HTTPS
Format digital certificates for a more secure WAN boot installation.	Split PKCS#12 file into a private key and a certificate to use with the WAN installation. This task is required for the secure installation configuration.	Creating a Trusted Certificate and Client Private Key
Create a hashing key and an encryption key for a more secure WAN boot installation.	Use the `wanbootutil keygen` command to create HMAC SHA1, 3DES, or AES keys. This task is required for the secure installation configuration. For insecure installations that check data integrity, complete this task to create an HMAC SHA1 hashing key.	To Create a Hashing Key and Encryption Key
Create the Solaris Flash archive.	Use the `flar create` command to create an archive of the software that you want to install on the client. This task is required for both secure and insecure installation configurations.	To Create a Solaris Flash Archive
Create the installation files for the custom JumpStart installation.	Use a text editor to create the following files: `sysidcfg` profile `rules.ok` begin scripts finish scripts This task is required for both secure and insecure installation configurations.	Creating the `sysidcfg` File Creating the Profile Creating the `rules` File (Optional) Creating Begin and Finish Scripts
Create the system configuration file.	Set the configuration information in the `system.conf` file. This task is required for both secure and insecure installation configurations.	To Create a System Configuration File
Create the WAN boot configuration file.	Set the configuration information in the `wanboot.conf` file. This task is required for both secure and insecure installation configurations.	To Create a `wanboot.conf` File
(Optional) Configure the DHCP server to support a WAN boot installation.	Set Sun vendor options and macros in the DHCP server.	Preconfiguring System Configuration Information With the DHCP Service (Tasks)
(Optional) Set up the logging server.	Configure a dedicated system for displaying boot and installation log messages.	(Optional) Configuring the WAN Boot Logging Server