Trusted Solaris 7 Release Notes

Previous: Allocating space for diskless clients during install time does not work (4280877)
Next: Sometimes root role cannot launch applications after install (4277688)

Net install fails without privileges (4291218)

All executables under Tools/Boot need privileges before net install. Without the proper privileges on the executables, net install will fail.

Workaround: Run net install commands with all privileges.

Net Install Procedure

In the root role, at label admin_low, use the Device Allocation Manager to allocate the CDROM drive, but do not mount it.

Do not try to use the Volume Manager; it is disabled in the Trusted Solaris environment.
1. Click the triangle above the Style Manager on the Front Panel to display the Trusted Desktop subpanel. Click Device Allocation.
2. Double-click the CDROM device to move it to the Allocated Devices list.
3. Write down the device name for the CDROM drive as indicated in the "Insert disk into..." message in the Device Allocation window.
  
  For example, if the message reads:
```
Insert disk into /dev/dsk/c0t2d0s0.
      Make sure disk is labeled ADMIN_LOW [ADMIN_LOW].
      Press RETURN when cdrom_0 is ready, or ^C to cancel.
```
  then write down the device name, /dev/dsk/c0t2d0s0, before continuing.
4. Insert the Trusted Solaris Installation CD into the CDROM drive and press the Return key.
5. Answer n to the Do you want cdrom_0 mounted: (y/n)? n question.

In the root role, at label admin_low, make sure that /cdrom/cdrom0 exists.

If it does not, create it:
# mkdir -p /cdrom/cdrom0

Mount the CDROM with all allowed and forced privileges.

# mount -F hsfs -o ro -S "allowed=all;forced=all" cdrom_device

For example, for the CDROM on device /dev/dsk/c0t2d0s0, type:

# mount -F hsfs -o ro -S "allowed=all;forced=all" \
 /dev/dsk/c0t2d0s0 /cdrom/cdrom0

Run the setup_install_server command, as described in the documentation.

Set up the .boot_attrs command to run with all privileges.
1. Assume the role secadmin.
2. Follow the procedure in "How to Update the Commands in a Role's Profile" in Trusted Solaris Installation and Configuration. Add the pathname of boot_attrs to the Custom Root Role profile, and give the command all privileges.

As root, run the .boot_attrs command with all privileges.
1. Assume the root role, and open a new terminal.
2. Check that the .boot_attrs command has all privileges.
  
  See "To Verify That a Command is in a Role's Profile" in Trusted Solaris Installation and Configuration.
3. Change directory to OSdir/Trusted_Solaris_7/Tools/Boot.
  # cd OSdir/Trusted_Solaris_7/Tools/Boot
4. As root, run the .boot_attrs command.
  # ../.boot_attrs

Remove the command from the Custom Root Role profile when you are done.

© 2010, Oracle Corporation and/or its affiliates