Creating Labeled Zones

Language:

The instructions in this section configure labeled zones. You have the option of creating two labeled zones automatically or manually creating zones.

Note - If you plan to use LDAP, go to Configuring LDAP for Trusted Extensions. You must configure LDAP before you create labeled zones.

Tip - To create a kernel or an immutable zone that is running Trusted Extensions, follow the instructions for creating a kernel or immutable zone:

How to Create and Deploy a Non-Global Zone in Creating and Using Oracle Solaris Zones
Installing a Kernel Zone in Creating and Using Oracle Solaris Kernel Zones You can also create multiple labeled zones under one kernel zone.
Chapter 10, Configuring and Administering Immutable Zones in Creating and Using Oracle Solaris Zones

As part of zone configuration, add the Trusted Extensions packages, enable Trusted Extensions, and then complete the configuration required for Trusted Extensions. Do not make a zone immutable until after configuration is complete.

Table 5 Creating Labeled Zones

Task	Description	For Instructions
1a. Create a default Trusted Extensions configuration.	The `txzonemgr -c` command creates two labeled zones from the `label_encodings` file.	How to Create a Default Trusted Extensions System
1b. Create a default Trusted Extensions configuration by using a GUI.	The `txzonemgr` script creates a GUI that presents the appropriate tasks as you configure your system.	How to Create Labeled Zones Interactively
1c. Manually step through zone creation.	The `txzonemgr` script creates a GUI that presents the appropriate tasks as you configure your system.	How to Create Labeled Zones Interactively
Create a labeled zone by using zone commands.	Creates one labeled zone.	How to Create Labeled Zones by Using the zonecfg Command
2. (Optional) Link to other systems on your network.	Configure labeled zone network interfaces and connect the global zone and labeled zones to other systems.	Configuring the Network Interfaces in Trusted Extensions