The following table lists the tasks you need to perform to prepare for a WAN boot installation. Review the task description to determine if the task is required for your WAN boot installation configuration.
For a description of a secure WAN boot installation over HTTPS, see Secure WAN Boot Installation Configuration.
For a description of an insecure WAN boot installation, see Insecure WAN Boot Installation Configuration.
To use a DHCP server or a logging server, complete the optional tasks that are listed at the bottom of the table.
Table 40–1 Task Map: Preparing to Perform a WAN Boot Installation
Task |
Description |
For Instructions |
---|---|---|
Decide what security features you want to use in your installation. |
Review the security features and configurations to decide what level of security you want to use in your WAN boot installation. | |
Collect WAN boot installation information. |
Complete the worksheet to record all the information you need to perform a WAN boot installation. | |
Create the document root directory on the WAN boot server. |
Create the document root directory and any subdirectories to serve the configuration and installation files. This task is required for both secure and insecure installation configurations. | |
Create the WAN boot miniroot. |
Use the setup_install_server command to create the WAN boot miniroot. This task is required for both secure and insecure installation configurations. | |
Install the wanboot program on the WAN boot server. |
Copy the wanboot program to the document root directory of the WAN boot server. This task is required for both secure and insecure installation configurations. | |
Install the wanboot-cgi program on the WAN boot server. |
Copy the wanboot-cgi program to the WAN boot server's CGI directory. This task is required for both secure and insecure installation configurations. | |
Set up the /etc/netboot hierarchy. |
Populate the /etc/netboot hierarchy with the configuration and security files that are required for a WAN boot installation. This task is required for both secure and insecure installation configurations. | |
Configure the web server to use secure HTTP for a more secure WAN boot installation. |
Identify the web server requirements that are necessary to perform a WAN installation with HTTPS. This task is required for the secure installation configuration. | |
Format digital certificates for a more secure WAN boot installation. |
Split PKCS#12 file into a private key and a certificate to use with the WAN installation. This task is required for the secure installation configuration. | |
Create a hashing key and an encryption key for a more secure WAN boot installation. |
Use the wanbootutil keygen command to create HMAC SHA1, 3DES, or AES keys. This task is required for the secure installation configuration. For insecure installations that check data integrity, complete this task to create an HMAC SHA1 hashing key. | |
Create the Solaris Flash archive. |
Use the flar create command to create an archive of the software that you want to install on the client. This task is required for both secure and insecure installation configurations. | |
Create the installation files for the custom JumpStart installation. |
Use a text editor to create the following files:
This task is required for both secure and insecure installation configurations. | |
Create the system configuration file. |
Set the configuration information in the system.conf file. This task is required for both secure and insecure installation configurations. | |
Create the WAN boot configuration file. |
Set the configuration information in the wanboot.conf file. This task is required for both secure and insecure installation configurations. | |
(Optional) Configure the DHCP server to support a WAN boot installation. |
Set Sun vendor options and macros in the DHCP server. |
Preconfiguring System Configuration Information With the DHCP Service (Tasks) |
(Optional) Set up the logging server. |
Configure a dedicated system for displaying boot and installation log messages. |