Solaris Trusted Extensions do not get enabled correctly after installation. Additional steps must be performed before rebooting or the system will hang.
On x86 based systems, the Xorg X Window server does not work once the Solaris Trusted Extensions software has been installed. The Xsun X server must be enabled in order to use a window system.
The following error message is displayed:
NOTICE: template type for hme0 incorrectly configured. Change to CIPSO type for 192.029.075.008 NOTICE: hme0 failed: Cannot insert CIPSO template for local addr 192.029.075.008 ip_arp_done: init failed Failed to configure IPv4 interface(s): hme0 Jun 19 11:44:51 svc.startd[7]: svc:/network/physical:default: Method "/lib/svc/method/net-physical" failed with exit status 96. Jun 19 11:44:51 svc.startd[7]: network/physical:default misconfigured: transitioned to maintenance (see 'svcs -xv' for details) |
Workaround: Perform the following steps:
Become superuser.
Install the Solaris OS.
Reboot the system.
Install Solaris Trusted Extensions.
Run the following commands:
# /usr/sbin/svccfg import /var/svc/manifest/network/tnctl.xml # /usr/sbin/svccfg import /var/svc/manifest/network/tnd.xml # /usr/sbin/svccfg import /var/svc/manifest/system/labeld.xml # /usr/sbin/svcadm mark -It maintenance tnctl # /usr/sbin/svcadm enable tnctl |
Add the following line for your host in the /etc/security/tsol/tnrhdb file:
<host IP address>:cipso
If the system architecture is x86, run the following command:
# /usr/sbin/svccfg -s svc:/application/x11/x11-server \ 'setprop options/server = /usr/openwin/bin/Xsun' |
Reboot the system.
Configure the Solaris Trusted Extensions software.