After installing Trusted Solaris software, the following security features are in place. Many features are configurable by the security administrator.
Auditing is enabled.
A SUN label_encodings file is configured and installed.
CDE creates four labeled workspaces.
Rights profiles for Trusted Solaris administrative roles are defined. It is the install team's job to create the roles.
The Solaris Management Console enables administrative roles to administer user, execution profile and other system databases.
A trusted editor enables administrators to modify local administrative files. It is implemented as a CDE action named Admin Editor.
Trusted Solaris-defined CDE actions to view and edit local administrative files in a trusted editor are available to users in administrative roles.
The Device Allocation Manager manages attached devices.
Three Trusted Solaris-defined databases, tnidb, tnrhtp, and tnrhdb, handle trusted networking. They are administered using the Interface Manager and Security Families tools in the Solaris Management Console.