After the Trusted Extensions software is enabled and the system is rebooted, the following security features are in place. Many features are configurable by the security administrator.
Auditing is enabled.
A Sun label_encodings file is installed and configured.
A trusted desktop, Solaris Trusted Extensions (GNOME), creates a windowing environment that enables Trusted Path workspaces in the global zone.
As in the Solaris OS, rights profiles for roles are defined. As in the Solaris OS, roles are not defined.
To use roles to administer Trusted Extensions, you must create the roles. During configuration, you create the Security Administrator role.
Three Trusted Extensions network databases, tnrhdb, tnrhtp, and tnzonecfg are added. The databases are administered by using the Security Templates tool and the Trusted Network Zones tool in the Solaris Management Console.
Trusted Extensions provides GUIs to administer the system. Some GUIs are extensions to a Solaris OS GUI.
A trusted editor enables administrators to modify local administrative files.
The Device Manager manages attached devices.
The Solaris Management Console provides Java-based tools to manage local and network administrative databases. The use of these tools is required for managing the trusted network, zones, and users.