JavaScript is required to for searching.
Skip Navigation Links
Exit Print View
Trusted Extensions Configuration and Administration     Oracle Solaris 11.1 Information Library
search filter icon
search icon

Document Information


Part I Initial Configuration of Trusted Extensions

1.  Security Planning for Trusted Extensions

2.  Configuration Roadmap for Trusted Extensions

3.  Adding the Trusted Extensions Feature to Oracle Solaris (Tasks)

4.  Configuring Trusted Extensions (Tasks)

5.  Configuring LDAP for Trusted Extensions (Tasks)

Part II Administration of Trusted Extensions

6.  Trusted Extensions Administration Concepts

7.  Trusted Extensions Administration Tools

8.  Security Requirements on a Trusted Extensions System (Overview)

9.  Performing Common Tasks in Trusted Extensions

Getting Started as a Trusted Extensions Administrator (Task Map)

How to Enter the Global Zone in Trusted Extensions

How to Exit the Global Zone in Trusted Extensions

Common Tasks in Trusted Extensions (Task Map)

How to Change the Password for root

How to Enforce a New Local User Password in a Labeled Zone

How to Regain Control of the Desktop's Current Focus

How to Obtain the Hexadecimal Equivalent for a Label

How to Obtain a Readable Label From Its Hexadecimal Form

How to Change Security Defaults in System Files

10.  Users, Rights, and Roles in Trusted Extensions (Overview)

11.  Managing Users, Rights, and Roles in Trusted Extensions (Tasks)

12.  Remote Administration in Trusted Extensions (Tasks)

13.  Managing Zones in Trusted Extensions

14.  Managing and Mounting Files in Trusted Extensions

15.  Trusted Networking (Overview)

16.  Managing Networks in Trusted Extensions (Tasks)

17.  Trusted Extensions and LDAP (Overview)

18.  Multilevel Mail in Trusted Extensions (Overview)

19.  Managing Labeled Printing (Tasks)

20.  Devices in Trusted Extensions (Overview)

21.  Managing Devices for Trusted Extensions (Tasks)

22.  Trusted Extensions Auditing (Overview)

23.  Software Management in Trusted Extensions

A.  Site Security Policy

Creating and Managing a Security Policy

Site Security Policy and Trusted Extensions

Computer Security Recommendations

Physical Security Recommendations

Personnel Security Recommendations

Common Security Violations

Additional Security References

B.  Configuration Checklist for Trusted Extensions

Checklist for Configuring Trusted Extensions

C.  Quick Reference to Trusted Extensions Administration

Administrative Interfaces in Trusted Extensions

Oracle Solaris Interfaces Extended by Trusted Extensions

Tighter Security Defaults in Trusted Extensions

Limited Options in Trusted Extensions

D.  List of Trusted Extensions Man Pages

Trusted Extensions Man Pages in Alphabetical Order

Oracle Solaris Man Pages That Are Modified by Trusted Extensions



Getting Started as a Trusted Extensions Administrator (Task Map)

Familiarize yourself with the following procedures before administering Trusted Extensions.

For Instructions
Log in to a Trusted Extensions system.
Logs you in securely.
Perform common user tasks on a desktop.
These tasks include:
  • Configuring your workspaces

  • Using workspaces at different labels

  • Using Trusted Extensions man pages

Perform tasks that require the trusted path.
These tasks include:
  • Allocating a device

  • Changing your password

  • Changing the label of a workspace

Assume a role.
Places you in the global zone in a role. All administrative tasks are performed in the global zone.
Select a user workspace.
Exits you from the global zone.

How to Enter the Global Zone in Trusted Extensions

By assuming a role, you enter the global zone in Trusted Extensions. Administration of the entire system is possible only from the global zone.

For troubleshooting purposes, you can also enter the global zone by starting a failsafe session. For details, see How to Log In to a Failsafe Session in Trusted Extensions.

Before You Begin

You are assigned an administrative role. For pointers, see Role Creation in Trusted Extensions.

  1. Click account-name in the trusted stripe.

    From the list, select a role.

    For the location of Trusted Extensions desktop features, see Figure 6-1. For an explanation of these features, see Chapter 4, Elements of Trusted Extensions (Reference), in Trusted Extensions User’s Guide.

  2. At the prompt, type the role password.

    After authentication, the current workspace changes to the role workspace.

How to Exit the Global Zone in Trusted Extensions

Before You Begin

You are in the global zone.

  1. Select a user workspace from the desktop panel at the bottom of the screen.
  2. Or, click your role name in the trusted stripe, and then select your user name.

    The current workspace changes to a user workspace. All subsequent windows that you create in this workspace are created at your user label of the user.

    The windows that you created in the role workspace continue to support processes at the label of the role. Processes initiated in those windows execute in the global zone with administrative privileges

    For more information, see Working on a Labeled System in Trusted Extensions User’s Guide.