Appendix D Example Worksheets
The worksheet examples provide you with samples for your workstations, devices, user-administrators, and network.
Caution - These are examples only. Do not use the IP addresses, names, and other details as they are written here.
How to Use the Examples
Root NIS+ Master Installation Program Example
|
Dialog Box Title |
Answer |
Comment |
|
Host name |
grebe |
|
|
Networked? |
Yes |
|
|
IP address |
129.159.110.1 |
|
|
Primary network interface |
le0 |
You are not prompted for this unless the workstation has more than one network card. |
|
Name service |
None |
You will turn the machine into the root NIS+ master later. |
|
Subnet? |
Yes |
If your LAN is part of a larger network, say yes. |
|
Subnet mask |
255.255.255.0 |
Check that the default is the appropriate mask for your site. |
|
Time zone |
Geographical, US Pacific |
A time zone map is provided on the WWW. |
|
Date and Time |
|
The default provided is usually the correct clock time. |
|
The answers to the above questions are System ID Information (sysidinfo). When installing over a network, system information is automatically given to the installation program, reducing the installer's interaction with the program. |
||
|
Install |
Install |
Upgrade is not supported for this release. |
|
System type |
Standalone |
|
|
Software group |
Entire |
|
|
Customize? |
Yes |
Customizing a software group often results in software dependencies; system administration knowledge is required to fix dependencies. |
|
Disk(s) to use |
c0t0d0, c0t1d0, c0t3d0, c0t5d0 |
See "Root NIS+ Master Disk Partitioning Example" for the details of the example. |
|
Preserve? |
Yes | No |
|
|
Auto-layout file systems? |
Yes |
Manual layout requires advanced system administration skills. |
|
File systems to auto-layout |
/, /usr, /var | |
|
Customize? |
|
Customizing requires advanced system administration skills. |
|
Customize Disks |
| |
|
Begin installation |
|
|
|
Reboot |
Yes |
|
|
Root password |
List it elsewhere |
Workstation security requires a root password. |
Root NIS+ Master Disk Partitioning Example
Workstation Name: grebe
|
Disk |
Slice |
Mount point |
Size |
Disk |
Slice |
Mount point |
Size |
|---|---|---|---|---|---|---|---|
|
c0t0d0 |
s0 |
/ |
80 |
c0t1d0 |
s0 |
/export/Answerbooks |
600 |
|
|
s1 |
swap |
180 |
|
s1 |
|
|
|
|
s2 |
entire disk |
1034 |
|
s2 |
entire disk |
1570 |
|
|
s3 |
/var |
224 |
|
s3 |
|
|
|
|
s4 |
|
|
|
s4 |
|
|
|
|
s5 |
|
|
|
s5 |
|
|
|
|
s6 |
/usr |
520 |
|
s6 |
|
410 |
|
|
s7 |
/export |
10 |
|
s7 |
/export/tools |
1380 |
|
Disk |
Slice |
Mount point |
Size |
Disk |
Slice |
Mount point |
Size |
|---|---|---|---|---|---|---|---|
|
c0t3d0 |
s0 |
|
|
c0t5d0 |
s0 |
|
|
|
|
s1 |
|
|
|
s1 |
|
|
|
|
s2 |
entire disk |
2028 |
|
s2 |
entire disk |
1980 |
|
|
s3 |
/etc/security/audit/grebe |
1014 |
|
s3 |
/swapfile |
600 |
|
|
s4 |
|
|
|
s4 |
|
|
|
|
s5 |
|
|
|
s5 |
|
|
|
|
s6 |
|
|
|
s6 |
|
|
|
|
s7 |
/etc/security/audit/grebe.1 |
1014 |
|
s7 |
/opt |
1380 |
Services Provided by Each Workstation Example
|
Use |
Name |
IP address |
Shared File Systems |
Security Information |
|---|---|---|---|---|
|
NIS+ workstations |
||||
|
Root NIS+ master |
grebe |
129.159.110.1 |
/etc/security/audit/grebe |
|
|
NIS+ replica |
willet |
129.159.110.3 |
/etc/security/audit/willet |
nosuid, nodev, [high] |
|
|
|
|
/etc/security/audit/willet.1 |
nosuid, nodev, [high] |
|
Network routers |
willet-118 le1 |
129.159.118.25 |
|
|
|
|
stilt-223 ie1 |
129.159.223.20 |
|
|
|
|
heron-119 le1 |
129.159.119.26 |
|
|
|
File Servers (Share file systems for mounting by end user workstations) |
||||
|
for home directories |
nest |
129.159.118.2 |
/export/home
|
|
|
for AnswerBooks |
worker |
129.159.118.7 |
/usr/all/books |
|
|
for CodeMgr |
ada |
129.159.110.5 |
/opt/utils/cmgr |
|
|
for Man Pages |
ada |
129.159.110.5 |
/opt/utils/man |
|
|
for Utilities |
ada |
129.159.118.5 |
/opt/utils/ |
|
|
for Applications |
worker |
129.159.118.7 |
/usr/all/apps |
|
|
Audit Servers (Share all audit file systems for mounting by audit administration server and user workstations) |
||||
|
|
willet |
|
/etc/security/audit/willet.1 |
nosuid, nodev, [high] |
|
|
egret |
|
.../egret.1,2,3,4 |
nosuid, nodev, [high] |
|
|
stilt |
|
.../stilt.1,2,3 |
nosuid, nodev, [high] |
|
|
tern |
|
.../tern.1,2,3,4 |
nosuid, nodev, [high] |
|
Audit Administration Server (Shares no file systems; mounts all audit file systems) |
||||
|
|
audacious |
129.159.110.7 |
None |
nosuid, nodev, [high] |
|
OS Servers for Diskless Clients (Shares file systems for mounting by diskless clients) |
||||
|
|
hurricane |
129.159.110.11 |
/export/root |
|
|
|
tornado |
129.159.110.12 |
/export/swap |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Install Server (Shares file system that contains Trusted Solaris image) |
||||
|
|
penguin |
|
|
|
|
Boot Server (One per NIS+ subdomain) |
||||
|
|
penguin |
|
|
|
|
Mail Server (Share /var/mail file system) |
||||
|
|
willet |
|
|
|
|
Print Servers |
||||
|
|
cirrus |
|
|
|
|
|
cumulus |
|
|
|
|
|
|
|
|
|
Standalone Workstation Installation Program Example - Audit Server
Note -
You will not be prompted for information that you have provided in NIS+ or in the boot_server:/etc/bootparams file (during a Custom JumpStart install).
|
Dialog Box Title |
Answer |
Comment |
|
Host name |
willet |
|
|
Networked? |
Yes |
|
|
IP address |
129.159.110.3 |
|
|
Primary network interface |
le0 |
You are not prompted for this unless the workstation has more than one network card. |
|
Name service |
NIS+ | None |
|
|
Subnet? |
Yes |
If your LAN is part of a larger network, say yes. |
|
Subnet mask |
255.255.255.0 |
Check that the default is the appropriate mask for your site. |
|
Time zone |
Geographical, US Pacific |
A time zone map is provided on the WWW. |
|
Date and Time |
|
The default provided is usually the correct clock time. |
|
The answers to the above questions are System ID Information (sysidinfo). When installing over a network, system information is automatically given to the installation program, reducing the installer's interaction with the program. |
||
|
Install |
Install |
Upgrade is not supported for this release. |
|
System type |
Standalone |
|
|
Software group |
Entire |
|
|
Customize? |
Yes |
Customizing a software group often results in software dependencies; system administration knowledge is required to fix dependencies. |
|
Disk(s) to use |
c0t0d0, c0t1d0, c0t3d0, c0t5d0 |
See "Standalone Disk Partitioning Example - Audit Server" for the details of the example. |
|
Preserve? |
Yes | No |
|
|
Auto-layout file systems? |
Yes |
Manual layout requires advanced system administration skills. |
|
File systems to auto-layout |
/, /usr, /var |
|
|
Customize? |
|
|
|
Customize Disks |
|
See "Standalone Disk Partitioning Example - Audit Server" for the details of the example. |
|
Begin installation |
|
|
|
Reboot |
Yes |
|
|
Root password |
List it elsewhere |
Workstation security requires a root password. |
Standalone Disk Partitioning Example - Audit Server
Note -
This workstation will be configured as a NIS+ client of the NIS+ root master.
Workstation Name: willet
|
Disk |
Slice |
Mount point |
Size |
Disk |
Slice |
Mount point |
Size |
|---|---|---|---|---|---|---|---|
|
c0t0d0 |
s0 |
/ |
75 |
c0t1d0 |
s0 |
|
|
|
|
s1 |
swap |
160 |
|
s1 |
|
|
|
|
s2 |
entire disk |
1034 |
|
s2 |
entire disk |
1980 |
|
|
s3 |
|
|
|
s3 |
/etc/security/audit/willet.1 |
990 |
|
|
s4 |
/var |
200 |
|
s4 |
|
|
|
|
s5 |
|
|
|
s5 |
|
|
|
|
s6 |
/usr |
350 |
|
s6 |
|
|
|
|
s7 |
/export/home |
250 |
|
s7 |
/etc/security/audit/willet.2 |
990 |
|
Disk |
Slice |
Mount point |
Size |
Disk |
Slice |
Mount point |
Size |
|---|---|---|---|---|---|---|---|
|
c0t3d0 |
s0 |
|
|
c0t5d0 |
s0 |
|
|
|
|
s1 |
|
|
|
s1 |
|
|
|
|
s2 |
entire disk |
1980 |
|
s2 |
entire disk |
1980 |
|
|
s3 |
/etc/security/audit/willet.3 |
990 |
|
s3 |
/etc/security/audit/willet |
990 |
|
|
s4 |
|
|
|
s4 |
|
|
|
|
s5 |
|
|
|
s5 |
|
|
|
|
s6 |
|
|
|
s6 |
|
|
|
|
s7 |
/etc/security/audit/willet.4 |
990 |
|
s7 |
/etc/security/audit/willet.5 |
990 |
Standalone Workstation Configuration Worksheet - Audit Server
|
System Administrator Information |
Security Officer Information |
||
|---|---|---|---|
|
Name |
willet |
root password |
|
|
IP address |
129.159.110.3 |
PROM mode |
full |
|
Ethernet address |
8:0:20:4c:7e:2f |
PROM password |
|
|
Sun architecture |
sun4m |
Boot-time network db entry |
129.159.110.1:tsol |
|
Network interfaces |
le0 |
|
|
|
Network router |
willet-118 le1 (129.159.118.25) |
|
|
|
Mount Points (For local file systems) |
Security Attributes |
||
|
|
/ |
|
|
|
|
/usr |
|
|
|
|
/var |
|
|
|
|
/export/home |
|
nosuid |
|
for NIS+ utils |
/opt/nis/ |
|
|
|
Mount Points (For remote file systems) |
|
|
|
|
for Sol AnswerBks |
/usr/AB/Sol7/ |
|
|
|
for TS AnswerBks |
/usr/AB/TS7/ |
|
|
|
for ManPages |
/usr/share/man |
|
|
|
for CodeMgr |
/opt/prog/Code |
|
|
|
for Utilities |
/opt/dist/Util |
|
|
|
for Applications |
/opt/dist/App |
|
|
|
Audit Mount Points |
|
|
|
|
Primary |
/etc/security/audit/tern.1 |
nosuid, nodev, [high] |
|
|
Secondary |
/etc/security/audit/egret.1 |
nosuid, nodev, [high] |
|
|
Local |
/etc/security/audit/willet |
nosuid, nodev, [high] |
|
|
Audit File Systems |
|
|
|
|
Primary |
tern:/etc/security/audit/tern.1/files |
|
|
|
Secondary |
egret:/etc/security/audit/egret.1/files |
|
|
|
Local |
/etc/security/audit/willet/files |
|
|
|
Mail Server |
grebe |
||
|
Attached Devices |
CDROM (sd6) |
|
only usable by those whose profile includes device_allocate |
|
|
tape drive (st4) |
|
|
|
Remote Printers |
|
||
|
|
cirrus |
|
|
|
|
cumulus |
Administrator printer [admin_high] only |
|
OS Server Installation Program Example
Note -
You will not be prompted for information that you have provided in NIS+ or in the boot_server:/etc/bootparams file (during a Custom JumpStart install).
|
Dialog Box Title |
Answer |
Comment |
|
Host name |
hurricane |
|
|
Networked? |
Yes |
|
|
IP address |
129.159.110.11 |
|
|
Primary network interface |
le0 |
You are not prompted for this unless the workstation has more than one network card. |
|
Name service |
NIS+ | None |
|
|
Subnet? |
Yes |
If your LAN is part of a larger network, say yes. |
|
Subnet mask |
255.255.255.0 |
Check that the default is the appropriate mask for your site. |
|
Time zone |
Geographical| US Pacific |
A time zone map is provided on the WWW. |
|
Date and Time |
|
The default is usually the correct clock time. |
|
The answers to the above questions are System ID Information (sysidinfo). When installing over a network, system information is automatically given to the installation program, reducing the installer's interaction with the program. |
||
|
Install |
Install |
Upgrade is not supported for this release. |
|
System type |
OS server |
|
|
Platforms supported |
sun4c, sun4d, sun4m, sun4u |
Choose all platforms that clients require. |
|
Client services |
4 clients, root=30, swap=24 |
When partitioning the disks, provide at least 30MB disk space per client in /export/root, and 24MB of swap space per client in /export/swap. (or make swap = client RAM) |
|
Software group |
Entire |
|
|
Disk(s) to use |
c0t0d0, c0t1d0, c0t3d0, c0t5d0 |
See "OS Server Disk Partitioning Example" for the details of the example. |
|
Auto-layout file systems? |
Yes |
|
|
File systems to auto-layout |
/, /usr, /var, /export |
|
|
Preserve existing data? |
Yes | No |
|
|
Reboot |
Yes |
|
|
Root password |
List it elsewhere |
Workstation security requires a root password. |
OS Server Disk Partitioning Example
Workstation Name: heron
|
Disk |
Slice |
Mount point |
Size |
Disk |
Slice |
Mount point |
Size |
|---|---|---|---|---|---|---|---|
|
c0t0d0 |
s0 |
/ |
|
c0t1d0 |
s0 |
|
|
|
|
s1 |
swap |
|
|
s1 |
|
|
|
|
s2 |
entire disk |
1034 |
|
s2 |
entire disk |
1980 |
|
|
s3 |
|
|
|
s3 |
|
|
|
|
s4 |
/var |
|
|
s4 |
|
|
|
|
s5 |
|
|
|
s5 |
|
|
|
|
s6 |
/usr |
|
|
s6 |
|
|
|
|
s7 |
|
|
|
s7 |
/export/home |
|
|
Disk |
Slice |
Mount point |
Size |
Disk |
Slice |
Mount point |
Size |
|---|---|---|---|---|---|---|---|
|
c0t3d0 |
s0 |
/export/root (30/client) |
120 |
c0t5d0 |
s0 |
|
|
|
|
s1 |
/export/swap (24/client) |
96 |
|
s1 |
|
|
|
|
s2 |
entire disk |
1980 |
|
s2 |
entire disk |
1980 |
|
|
s3 |
|
|
|
s3 |
|
|
|
|
s4 |
/export/exec |
|
|
s4 |
|
|
|
|
s5 |
|
|
|
s5 |
|
|
|
|
s6 |
|
|
|
s6 |
|
|
|
|
s7 |
|
|
|
s7 |
|
|
OS Server Configuration Worksheet
|
System Administrator Information |
Security Officer Information |
||
|---|---|---|---|
|
Name |
heron |
root password |
|
|
IP address |
129.159.110.11 |
PROM mode |
full |
|
Ethernet address |
8:0:20:8a:2d:f |
PROM password |
|
|
Sun architecture |
sun4m |
Boot-time network db entry |
129.159.110.1:tsol |
|
Network interface |
le1 (129.159.118.0) |
|
|
|
Mount Points (For local file systems) |
Security Attributes |
||
|
|
/ |
|
|
|
|
/usr |
|
|
|
|
/var |
|
|
|
|
/export/home |
|
nosuid |
|
for NIS+ utils |
/opt/nis/ |
|
|
|
Mount Points (For remote file systems) |
|
|
|
|
for Sol AnswerBks |
/usr/AB/Sol7/ |
|
|
|
for TS AnswerBks |
/usr/AB/TS7/ |
|
|
|
for ManPages |
/usr/shar/man |
|
|
|
for CodeMgr |
/opt/prog/Code |
|
|
|
for Utilities |
/opt/dist/Util |
|
|
|
for Applications |
/opt/dist/App |
|
|
|
Audit Mount Points |
|
|
|
|
Primary |
/etc/security/audit/tern.4 |
nosuid, nodevices, [high] |
|
|
Secondary |
/etc/security/audit/egret.4 |
nosuid, nodevices, [high] |
|
|
Local |
/etc/security/audit/hurricane |
nosuid, nodevices, [high] |
|
|
Audit File Systems |
|
|
|
|
Primary |
tern:/etc/security/audit/tern.4/files |
|
|
|
Secondary |
egret:/etc/security/audit/egret.4/files |
|
|
|
Local |
/etc/security/audit/willet/files |
|
|
|
Diskless Clients |
|
|
|
|
nestling |
/export/root/clientname... |
|
|
|
babybird |
/export/swap/clientname... |
|
|
|
juniorbird |
/export/root/clientname/usr/AB |
|
|
|
tinytweet |
/export/root/clientname/opt |
|
|
|
smalldove |
/export/root/clientname/shar |
|
|
|
tinkerbell |
|
|
|
|
Mail Server |
grebe |
||
|
Attached Devices |
None |
|
|
|
Remote Printers |
|
||
|
|
cirrus |
|
|
|
|
cumulus |
Administrator printer [admin_high] only |
|
Remote Hosts Worksheet - Example
|
Trusted Solaris 7 Host Type = tsol; |
Unlabeled Host Type = unlab; |
Unlabeled Host Type = unlab_conf; |
|||
|---|---|---|---|---|---|
|
Name |
grebe |
Name |
dickinson |
Name |
aptitude |
|
IP address |
129.159.110.1 |
IP address |
129.159.129.11 |
IP address |
129.159.129.12 |
|
Name |
willet |
Name |
|
Name |
|
|
IP address |
129.159.110.2 |
IP address |
|
IP address |
|
|
Name |
sora |
Name |
|
Name |
|
|
IP address |
129.159.110.3 |
IP address |
|
IP address |
|
|
Name |
|
Name |
|
Name |
|
|
IP address |
|
IP address |
|
IP address |
|
|
Name |
|
Name |
|
Name |
|
|
IP address |
|
IP address |
|
IP address |
|
|
Name |
|
Name |
|
Name |
|
|
IP address |
|
IP address |
|
IP address |
|
Remote Hosts (tnrhdb) Worksheet for NIS+ Root Master - Example
|
System Administrator Information |
Security Administrator Information |
||
|---|---|---|---|
|
Name |
dickinson |
Template |
unlab |
|
IP address |
129.159.129.11 |
|
|
|
Host_type |
unlabeled |
|
|
|
Use |
file server |
|
|
|
Name |
|
Template |
sun_tsol2 |
|
IP address |
129.159.150.0 |
|
|
|
Host_type |
sun_tsol |
|
|
|
Use |
another TS2.5 domain |
|
|
|
Name |
aptitude |
Template |
unlab_conf |
|
IP address |
129.159.129.12 |
|
|
|
Host_type |
unlabeled |
|
|
|
Use |
application server |
|
|
|
Name |
chincoteague |
Template |
unlab_uncl_write |
|
IP address |
129.159.129.10 |
|
|
|
Host_type |
unlabeled |
|
|
|
Use |
print server (unclassified) |
|
|
Remote Hosts (tnrhdb) Worksheet for Individual Workstations - Example
|
System Administrator Information |
Security Officer Information |
||
|---|---|---|---|
|
Workstation name |
grebe communicates with |
|
|
|
Remote host |
nestleberry |
Template |
ripso_1 |
|
IP address |
129.159.132.12 |
|
|
|
Host_type |
RIPSO |
|
|
|
Use |
NIS+ man pages |
|
|
|
Workstation name |
grebe communicates with |
|
|
|
Remote host |
diogenes |
Template |
cipso_0 |
|
IP address |
129.159.132.11 |
|
|
|
Host_type |
CIPSO |
|
|
|
Use |
network diagnostics |
|
|
User Worksheet Example
|
User: Katherine Pollit |
|
|
|---|---|---|
|
Identity |
User name |
pollitk |
|
|
User ID |
2001 |
|
|
Primary Group |
staff, admin |
|
|
Secondary Groups |
analysts |
|
|
Comment |
Kathy Pollit |
|
|
Login Shell |
C shell |
|
|
User Type |
Normal |
|
Home |
Create home dir automatically? |
Yes |
|
|
Home directory |
/export/home/pollitk |
|
|
Path to setup files |
/etc/skel/tsol |
|
|
Default permissions |
rwxr----- |
|
|
Mail server |
grebe |
|
|
AutoHome setup? |
No |
|
Password |
Password generation method |
Type in |
|
|
Minimum days between changing passwords |
|
|
|
Maximum days between changing passwords |
|
|
|
Maximum time a user can be inactive |
|
|
|
Status |
Open |
|
|
NIS+ credentials? |
Yes |
|
Idle |
Idle time |
120 minutes |
|
|
Idle action: logout | lock screen |
Lock screen |
|
Labels |
Clearance |
TS ABLE BAKER |
|
|
Minimum label |
Confidential |
|
|
View - External or Internal? |
External |
|
|
Sensitivity Label visible or not visible? |
visible |
|
|
Information Label visible or not visible? |
visible |
|
Profiles |
All | Nothing | ... |
All, Convenient Authorizations |
|
Roles |
secadmin | admin | root | oper |
secadmin |
- © 2010, Oracle Corporation and/or its affiliates