Trusted Solaris Administrator's Procedures
    
A
 
 access
  administrator responsibilities ( Index Term Link )
  to devices ( Index Term Link )
  to printers ( Index Term Link )
 
 access policy, devices ( Index Term Link )
 
 accounts
  assigning labels ( Index Term Link )
  assigning passwords ( Index Term Link )
  assigning rights ( Index Term Link )
  assigning roles ( Index Term Link )
  assigning shells ( Index Term Link )
  deletion precautions ( Index Term Link )
  planning ( Index Term Link )
  security precautions ( Index Term Link )
  startup files ( Index Term Link ) ( Index Term Link )
 
 accreditation checks ( Index Term Link ) ( Index Term Link )
 
 actions
  adding new ( Index Term Link ) ( Index Term Link )
  adding outside the System_Admin folder ( Index Term Link )
  restricted by account profiles ( Index Term Link )
  using ( Index Term Link )
 
 add_allocatable command ( Index Term Link )
 
 Add to NIS+ Administrative Group action ( Index Term Link ) ( Index Term Link ) ( Index Term Link )
 
 Admin Editor, using ( Index Term Link )
 
 ADMIN_LOW label
  installing software ( Index Term Link )
  mail ( Index Term Link )
  protecting administrative files ( Index Term Link )
  role workspace ( Index Term Link )
 
 administrative actions
  Add to NIS+ Administrative Group ( Index Term Link ) ( Index Term Link ) ( Index Term Link )
  adding ( Index Term Link )
  Admin Editor ( Index Term Link )
  available in Rights tool ( Index Term Link )
  creating ( Index Term Link ) ( Index Term Link ) ( Index Term Link )
  in System_Admin folder ( Index Term Link )
  launching remotely ( Index Term Link )
  Name Service Switch ( Index Term Link )
  name services ( Index Term Link )
  Set Mail Options ( Index Term Link )
  trusted ( Index Term Link )
  using ( Index Term Link )
 
 administrative roles
  adding a name service client ( Index Term Link )
  administering NIS+ ( Index Term Link )
  administering remotely ( Index Term Link )
  assuming ( Index Term Link ) ( Index Term Link )
  changing workspace label ( Index Term Link )
  described ( Index Term Link )
  exiting ( Index Term Link )
  launching the Printer Administrator ( Index Term Link )
  logging in remotely ( Index Term Link )
  remote role assumption ( Index Term Link )
  saving and restoring name service databases ( Index Term Link )
  workspaces ( Index Term Link )
 
 Administrative Roles tool, using ( Index Term Link )
 
 administrative tools, See Solaris Management Console ( Index Term Link )
 
 adminvi command, aliasing vi ( Index Term Link )
 
 allocate command, described ( Index Term Link )
 
 allocate error state
  caused by failure of eject ( Index Term Link )
  defined ( Index Term Link )
  procedure for correcting ( Index Term Link )
 
 Application Manager, as trusted process ( Index Term Link )
 
 applications
  assigning forced privileges ( Index Term Link )
  evaluating for security ( Index Term Link )
 
 at.allow file ( Index Term Link )
 
 at command, administrative differences ( Index Term Link )
 
 at jobs, running privileged commands ( Index Term Link )
 
 atohexlabel command ( Index Term Link )
 
 atq command ( Index Term Link )
 
 atrm command ( Index Term Link )
 
 attr_mac_policy ( Index Term Link )
 
 audio coprocessor ( Index Term Link )
 
 AUDIO_DRAIN ioctl, run by device_clean ( Index Term Link )
 
 AUDIO_SETINFO ioctl, resetting device to default ( Index Term Link )
 
 AUDIOGETREG ioctl, run by device_clean ( Index Term Link )
 
 auth_name file ( Index Term Link )
 
 authorizations
  adding ( Index Term Link )
  adding to software ( Index Term Link )
  Allocate Device ( Index Term Link ) ( Index Term Link ) ( Index Term Link )
  device-related ( Index Term Link )
  device-related procedures ( Index Term Link )
  Edit Owned Jobs ( Index Term Link ) ( Index Term Link )
  for device administration ( Index Term Link )
  for devices ( Index Term Link )
  Manage All Jobs ( Index Term Link ) ( Index Term Link )
    
B
 
 banner pages, printing without ( Index Term Link )
 
 batch command ( Index Term Link )
 
 boot rights profile ( Index Term Link )
    
C
 
 cachefs filesystem type ( Index Term Link )
 
 CD-ROM, mounting ( Index Term Link )
 
 CD-ROM devices
  accessing ( Index Term Link )
  device_clean script ( Index Term Link )
  launching audio program ( Index Term Link )
  mounting ( Index Term Link )
 
 CIPSO, use in packets ( Index Term Link )
 
 commands
  giving forced privileges ( Index Term Link )
  privileges ( Index Term Link )
  trusted ( Index Term Link )
 
 commercial applications, evaluating ( Index Term Link )
 
 .copy_files file
  example ( Index Term Link )
  setting up for users ( Index Term Link )
  using ( Index Term Link )
 
 cron.allow file ( Index Term Link )
 
 cron command ( Index Term Link )
 
 cron.deny file ( Index Term Link )
 
 cron jobs, running privileged commands ( Index Term Link )
 
 crontab command ( Index Term Link )
 
 cut and paste, configuring selection transfer rules ( Index Term Link )
    
D
 
 DAC
  device files ( Index Term Link )
  policy for devices ( Index Term Link )
 
 deallocate command ( Index Term Link )
 
 default shells, assigning to accounts ( Index Term Link )
 
 /dev/kmem kernel image file, security violation ( Index Term Link )
 
 developers responsibilities ( Index Term Link )
 
 device_allocate file ( Index Term Link )
 
 Device Allocation Manager
  administering devices ( Index Term Link )
  allocating and administering devices ( Index Term Link )
  allocating devices ( Index Term Link )
 
 device_clean command ( Index Term Link )
 
 device_clean scripts
  for tape devices ( Index Term Link )
  modifying ( Index Term Link )
  procedure for adding devices ( Index Term Link )
  review ( Index Term Link )
 
 device_maps file ( Index Term Link )
 
 device policy, setting ( Index Term Link )
 
 device_policy file ( Index Term Link )
 
 device special files, access policy ( Index Term Link )
 
 devices
  access policy ( Index Term Link ) ( Index Term Link )
  accessing ( Index Term Link )
  adding ( Index Term Link )
  adding device_clean script ( Index Term Link )
  adding site-specific authorizations ( Index Term Link )
  administering ( Index Term Link ) ( Index Term Link )
  authorizations ( Index Term Link )
  configuring serial line ( Index Term Link )
  modifying policy ( Index Term Link )
  non-allocatable
   setting the label range ( Index Term Link )
  policy defaults ( Index Term Link )
  reclaiming ( Index Term Link )
  setting policy ( Index Term Link )
  setting up audio ( Index Term Link )
 
 directories
  changing flags ( Index Term Link )
  changing labels and privileges ( Index Term Link )
  security attributes ( Index Term Link ) ( Index Term Link )
  sharing ( Index Term Link )
  upgraded ( Index Term Link )
 
 dminfo command, reporting entry in the device_maps ( Index Term Link )
 
 dtsession command, running updatehome ( Index Term Link )
 
 dtterm terminal
  forcing the sourcing of .profile ( Index Term Link ) ( Index Term Link )
 
 dtwm command ( Index Term Link )
    
E
 
 Edit Owned Jobs authorization ( Index Term Link ) ( Index Term Link )
 
 editing privileged executables ( Index Term Link )
 
 email
  managing ( Index Term Link ) ( Index Term Link )
  options ( Index Term Link )
  switching mail tools ( Index Term Link ) ( Index Term Link )
  troubleshooting ( Index Term Link )
 
 emetric, described ( Index Term Link )
 
 emetrics, using in routing ( Index Term Link )
 
 /etc/cron.d/CRON, cron lock file ( Index Term Link )
 
 /etc/cron.d/cron.admin file, creating ( Index Term Link )
 
 /etc/default/login file, specifying RETRIES ( Index Term Link )
 
 /etc/init.d directory, RMTMPFILES script ( Index Term Link )
 
 /etc/init.d scripts, Trusted Solaris modifications ( Index Term Link )
 
 /etc/nologin file, disabling logins ( Index Term Link )
 
 /etc/skel directory ( Index Term Link )
 
 exec system call, inheriting privileges across ( Index Term Link )
 
 executable files
  assigning forced privileges ( Index Term Link )
  editing while preserving privileges ( Index Term Link )
 
 exporting software ( Index Term Link )
    
F
 
 failsafe session, recovering from startup file errors ( Index Term Link )
 
 fallback mechanism, creating ( Index Term Link )
 
 FDFS, mounting ( Index Term Link )
 
 file_mac_write privilege, resulting in a file's dominating its directory's SL ( Index Term Link )
 
 File Manager
  as trusted process ( Index Term Link )
  changing security attributes ( Index Term Link )
  Privileges dialog box ( Index Term Link )
 
 file systems
  cachefs type ( Index Term Link )
  changing security attributes using mount ( Index Term Link )
  changing security attributes using newsecfs ( Index Term Link )
  changing security attributes using setfsattr command ( Index Term Link )
  changing security attributes using vfstab file ( Index Term Link )
  fdfs type ( Index Term Link )
  hsfs type ( Index Term Link )
  lofs type ( Index Term Link )
  managing ( Index Term Link )
  nfs type ( Index Term Link )
  pcfs type ( Index Term Link )
  security attributes ( Index Term Link ) ( Index Term Link )
  sharing ( Index Term Link )
  single label ( Index Term Link )
  table of supported types, examples, notes ( Index Term Link )
  tmpfs type ( Index Term Link )
 
 file_upgrade_sl privilege, resulting in upgraded names ( Index Term Link )
 
 files
  backing up ( Index Term Link )
  changing flags ( Index Term Link )
  changing labels ( Index Term Link )
  changing privileges ( Index Term Link )
  managing ( Index Term Link )
  procedure for changing labels and privileges ( Index Term Link )
  restoring ( Index Term Link )
  upgraded ( Index Term Link )
 
 floppy disk devices
  accessing ( Index Term Link )
  device_clean script ( Index Term Link )
 
 forced privileges, assigning ( Index Term Link )
 
 fork system call, inheriting privileges across ( Index Term Link )
 
 Front Panel
  as trusted process ( Index Term Link )
  Device Allocation Manager ( Index Term Link )
    
G
 
 getdents system call, restricting from returning upgraded names ( Index Term Link )
 
 getfattrflag command ( Index Term Link )
 
 getfpriv command, using to save privileges ( Index Term Link )
 
 getfsattr command ( Index Term Link )
 
 groups
  deletion precautions ( Index Term Link )
  security requirements ( Index Term Link )
    
H
 
 help file, creating ( Index Term Link )
 
 hexadecimal label equivalents, determining ( Index Term Link )
 
 host types
  networking ( Index Term Link )
  table of templates and protocols ( Index Term Link )
 
 hosts, networking concepts ( Index Term Link )
 
 HSFS
  mounting ( Index Term Link )
  procedure for mounting ( Index Term Link )
    
I
 
 icons
  visibility
   in the File Manager ( Index Term Link )
   in the Workspace Menu ( Index Term Link )
 
 identification and authentication
  before assuming a role ( Index Term Link ) ( Index Term Link )
 
 IMAP server, adding to NIS+ admin group ( Index Term Link )
 
 inheritable privileges ( Index Term Link )
 
 init.d directory, RMTMPFILES script ( Index Term Link )
 
 initialization files, Trusted Solaris differences ( Index Term Link )
 
 Interface Manager tool, using ( Index Term Link )
 
 internationalization, changing printer output ( Index Term Link )
 
 IP Options, using for trusted routing ( Index Term Link )
    
J
 
 Java jar files, installing ( Index Term Link )
    
K
 
 kadb command, overriding default setting ( Index Term Link )
 
 kernel switches
  changing defaults ( Index Term Link )
  configurable ( Index Term Link )
 
 keyboard shutdown
  changing default ( Index Term Link )
  enabling ( Index Term Link )
 
 kmem kernel image file ( Index Term Link )
    
L
 
 label_encodings file
  procedures
   printing without banners and trailers ( Index Term Link )
 
 label ranges
  receiving mail outside of ( Index Term Link )
  setting on individual computers ( Index Term Link )
  setting on printers ( Index Term Link )
 
 labels
  changing on files and directories ( Index Term Link )
  seeing on directories ( Index Term Link )
 
 libt6 library ( Index Term Link )
 
 .link_files file
  using ( Index Term Link )
  example ( Index Term Link )
  setting up for users ( Index Term Link )
 
 links - symbolic, MAC attributes ( Index Term Link )
 
 list_devices command ( Index Term Link )
 
 local.login file, defining printers ( Index Term Link )
 
 LOFS, mounting ( Index Term Link )
 
 login
  by administrative roles ( Index Term Link ) ( Index Term Link )
  configuring serial line ( Index Term Link )
  maximum allowed number of failures ( Index Term Link )
  opening an account closed by too many failed logins ( Index Term Link )
  preventing being disabled after reboot ( Index Term Link )
  setting the maximum number of failures ( Index Term Link )
 
 .login file
  setting up for users ( Index Term Link ) ( Index Term Link )
 
 login sequence ( Index Term Link )
 
 login shells, assigning to roles ( Index Term Link )
    
M
 
 MAC
  cautions about override privileges ( Index Term Link )
  incoming packets
   packets ( Index Term Link )
  outgoing packets ( Index Term Link )
  policy for devices ( Index Term Link )
 
 mail
  adding IMAP server ( Index Term Link )
  alternate application ( Index Term Link )
  checking network connections ( Index Term Link )
  creating action ( Index Term Link )
  installing alternate mailer ( Index Term Link )
  loss of mail icons ( Index Term Link )
  managing ( Index Term Link ) ( Index Term Link )
  modifying an alias ( Index Term Link )
  options ( Index Term Link ) ( Index Term Link )
  outside label range ( Index Term Link )
  setting up IMAP server ( Index Term Link )
  substituting alternate application ( Index Term Link )
  switching mail tools ( Index Term Link ) ( Index Term Link )
  troubleshooting ( Index Term Link ) ( Index Term Link )
  viewing the mail queue ( Index Term Link )
 
 Mailing Lists tool, using ( Index Term Link )
 
 .mailrc file ( Index Term Link )
 
 man pages
  accessing all ( Index Term Link ) ( Index Term Link )
 
 Manage All Jobs authorization ( Index Term Link ) ( Index Term Link )
 
 MANPATH environment variable ( Index Term Link )
 
 MLDs
  listing user's home directories ( Index Term Link )
  mounting ( Index Term Link )
  mounting on unlabeled hosts ( Index Term Link )
  privilege requirements ( Index Term Link )
 
 mounts
  managing ( Index Term Link )
  procedure for TMPFS file systems ( Index Term Link )
  troubleshooting ( Index Term Link )
    
N
 
 Name Service Switch action ( Index Term Link )
 
 name services
  actions for managing ( Index Term Link )
  adding a client ( Index Term Link )
  advantages ( Index Term Link )
  databases unique to Trusted Solaris environment ( Index Term Link )
  managing ( Index Term Link )
  saving and restoring databases ( Index Term Link )
 
 network interfaces
  configuring ( Index Term Link )
  requirements ( Index Term Link )
 
 networking concepts ( Index Term Link )
 
 networks
  default labeling ( Index Term Link )
  using templates ( Index Term Link )
 
 newsecfs command ( Index Term Link )
 
 NFS, mounting ( Index Term Link )
 
 NIS+
  adding a NIS+ client ( Index Term Link )
  adding IMAP server ( Index Term Link )
  adding role to admin group ( Index Term Link )
  saving and restoring tables ( Index Term Link )
  viewing table information ( Index Term Link )
 
 normal user, accessing devices ( Index Term Link )
 
 nsswitch.conf file, trusted network configuration ( Index Term Link )
    
O
 
 object reuse, clearing names of empty directories ( Index Term Link )
 
 open_priv, policy for devices ( Index Term Link )
    
P
 
 packages, accessing the CD ( Index Term Link )
 
 packets
  IP options ( Index Term Link )
  IP options field ( Index Term Link )
  outgoing
   MAC rules ( Index Term Link )
  security attributes ( Index Term Link )
 
 passwords
  assigning ( Index Term Link )
  changing allowed tries ( Index Term Link )
  role ( Index Term Link )
  storage ( Index Term Link )
 
 PCFS, mounting ( Index Term Link )
 
 permissions, on devices ( Index Term Link )
 
 polling trusted network databases, changing ( Index Term Link )
 
 Printer Administrator, launching ( Index Term Link )
 
 printers, setting label range ( Index Term Link )
 
 printing
  accessing remote printer ( Index Term Link )
  configuring attached printer ( Index Term Link )
  configuring for labels ( Index Term Link )
  configuring labels and text ( Index Term Link )
  managing ( Index Term Link )
  restricting label range ( Index Term Link )
  using a non-Trusted Solaris server ( Index Term Link )
  without banners and trailers ( Index Term Link )
  without labels ( Index Term Link )
  without page labels ( Index Term Link ) ( Index Term Link )
 
 priv_name file ( Index Term Link )
 
 priv_names.h file ( Index Term Link )
 
 privilege debugging, setting tsol_privs_debug ( Index Term Link )
 
 privileged commands, run by cron and at ( Index Term Link )
 
 privileged programs ( Index Term Link )
 
 privileges
  adding ( Index Term Link )
  adding to software ( Index Term Link )
  allowed ( Index Term Link )
  assigning forced ( Index Term Link )
  changing on files and directories ( Index Term Link )
  debugging ( Index Term Link )
  forced
   assigning ( Index Term Link )
  giving forced ( Index Term Link )
  inheritable ( Index Term Link ) ( Index Term Link )
  non-obvious reasons for requiring ( Index Term Link )
  passing to child processes ( Index Term Link )
  saving and restoring an edited executable ( Index Term Link )
 
 PROCFS, mounting ( Index Term Link )
 
 .profile file
  setting up for users ( Index Term Link ) ( Index Term Link )
 
 profile shell
  enabling privilege ( Index Term Link )
  startup algorithm ( Index Term Link )
 
 profiles, assigning ( Index Term Link )
 
 programs
  commercial
   assigning privileges to ( Index Term Link )
  new, trusted
   assigning privileges to ( Index Term Link )
  privilege debugging ( Index Term Link )
  trusted vs. trustworthy ( Index Term Link )
    
R
 
 rcp command, required privilege ( Index Term Link )
 
 real UID of root, required for applications ( Index Term Link )
 
 reboot, changing device_policy ( Index Term Link )
 
 remote administration, editor limitations ( Index Term Link )
 
 remote logins, enabling for roles ( Index Term Link )
 
 remote role assumption ( Index Term Link )
 
 remove_allocatable command ( Index Term Link )
 
 rights, assigning ( Index Term Link )
 
 rights profiles
  boot ( Index Term Link )
  controlling the use of actions ( Index Term Link )
  creating ( Index Term Link )
  creating new for boot commands ( Index Term Link )
  listing ( Index Term Link )
  modifying ( Index Term Link )
 
 Rights tool
  specifying privileges for commands and actions ( Index Term Link )
  using ( Index Term Link ) ( Index Term Link ) ( Index Term Link ) ( Index Term Link )
  viewing new actions ( Index Term Link )
 
 RIPSO
  supported classifications ( Index Term Link )
  use in packets ( Index Term Link )
 
 roles
  administrative ( Index Term Link )
  assigning login shell ( Index Term Link )
  creating ( Index Term Link ) ( Index Term Link )
  listing ( Index Term Link )
  managing ( Index Term Link )
  modifying ( Index Term Link )
  See administrative roles ( Index Term Link )
 
 root UID, required for applications ( Index Term Link )
 
 routers ( Index Term Link )
 
 routing
  concepts ( Index Term Link ) ( Index Term Link )
  static with emetrics ( Index Term Link )
  tables ( Index Term Link )
 
 run control scripts
  shell use ( Index Term Link ) ( Index Term Link )
 
 runpd command ( Index Term Link )
    
S
 
 /sbin/sysh shell ( Index Term Link )
 
 security administrators
  enforcing security ( Index Term Link )
  modifying window configuration files ( Index Term Link )
 
 security attributes
  file systems ( Index Term Link ) ( Index Term Link )
  modifying user defaults ( Index Term Link ) ( Index Term Link )
  saving to tape ( Index Term Link )
  setting at mount time ( Index Term Link )
  setting for remote hosts ( Index Term Link )
  setting on file system ( Index Term Link )
  setting using newsecfs ( Index Term Link )
 
 Security Families tool
  assigning templates ( Index Term Link )
  using ( Index Term Link )
 
 security features, identification and authentication ( Index Term Link )
 
 security mechanisms, extendable ( Index Term Link )
 
 security policy
  allowing a wildcard in special boot files ( Index Term Link )
  training users ( Index Term Link ) ( Index Term Link ) ( Index Term Link )
 
 sel_config file
  changing defaults ( Index Term Link )
  configuring selection transfer rules ( Index Term Link )
  sections ( Index Term Link )
 
 sel_mgr command ( Index Term Link )
 
 sendmail command
  tracing mail delivery ( Index Term Link )
  using ( Index Term Link )
 
 serial line, configuring for logins ( Index Term Link )
 
 Set Mail Options action ( Index Term Link )
 
 setfattrflag command ( Index Term Link )
 
 setfpriv command ( Index Term Link )
 
 setfsattr command ( Index Term Link )
 
 shell scripts
  profile ( Index Term Link )
  Trusted Solaris behavior ( Index Term Link )
  user and role requirements ( Index Term Link )
  writing ( Index Term Link )
  writing privileged ( Index Term Link )
  writing privileged using standard shells ( Index Term Link )
 
 shells
  assigning to accounts ( Index Term Link )
  assigning to roles ( Index Term Link )
  profile ( Index Term Link ) ( Index Term Link )
  profile startup algorithm ( Index Term Link )
  standard ( Index Term Link )
  sysh ( Index Term Link )
 
 skeleton directories
  defining printers ( Index Term Link )
  use in Trusted Solaris ( Index Term Link )
 
 software
  exporting ( Index Term Link )
  importing ( Index Term Link )
  installing at ADMIN_LOW ( Index Term Link )
  installing Java programs ( Index Term Link )
  porting
   reasons against ( Index Term Link )
  privilege debugging ( Index Term Link )
 
 Solaris Management Console
  Administrative Roles tool ( Index Term Link )
  Interface Manager tool ( Index Term Link )
  launching ( Index Term Link )
  Rights tool ( Index Term Link ) ( Index Term Link ) ( Index Term Link ) ( Index Term Link )
  Security Families tool ( Index Term Link )
  User Accounts tool ( Index Term Link ) ( Index Term Link )
 
 startup files
  configuring accounts ( Index Term Link ) ( Index Term Link )
  .mailrc file ( Index Term Link )
  procedures for customizing ( Index Term Link ) ( Index Term Link )
  read at window system startup ( Index Term Link )
  recovering from errors ( Index Term Link )
  RMTMPFILES ( Index Term Link )
 
 Stop-A
  changing default ( Index Term Link )
  enabling ( Index Term Link )
 
 str_type ( Index Term Link )
 
 symbolic links, MAC attributes ( Index Term Link )
 
 sysh shell ( Index Term Link )
 
 System_Admin folder, using administrative actions ( Index Term Link )
 
 system file, changing defaults ( Index Term Link )
 
 system security, violations ( Index Term Link )
 
 system shell, enabling privilege ( Index Term Link )
    
T
 
 tape devices
  accessing ( Index Term Link )
  device_clean scripts ( Index Term Link )
 
 tar, saving security attributes ( Index Term Link )
 
 TMPFS
  mounting ( Index Term Link )
  procedure for mounting ( Index Term Link )
 
 tnd polling interval, changing ( Index Term Link )
 
 Tools subpanel, Device Allocation Manager ( Index Term Link )
 
 troubleshooting
  loss of mail icons ( Index Term Link )
  mail delivery ( Index Term Link )
  mounts ( Index Term Link )
  sendmail ( Index Term Link )
 
 trusted_edit script, assigning as default editor ( Index Term Link )
 
 trusted networking
  0.0.0.0 tnrhdb entry ( Index Term Link )
  fallback mechanism ( Index Term Link )
  host types ( Index Term Link )
 
 trusted path attribute, when available ( Index Term Link )
 
 Trusted Path menu ( Index Term Link )
 
 trusted processes
  defined ( Index Term Link )
  launching actions ( Index Term Link )
 
 trusted programs
  adding ( Index Term Link )
  defined ( Index Term Link )
 
 trustworthy programs ( Index Term Link )
 
 tsol_hide_upgraded_names kernel switch ( Index Term Link )
 
 tsol_privs_debug kernel switch ( Index Term Link )
 
 TSOLadmin.dt file, adding an administrative action ( Index Term Link )
 
 tsolgateways file ( Index Term Link )
 
 tunnel file
  procedure for creating ( Index Term Link )
  setting up tunneling ( Index Term Link )
 
 tunnelling, passing emetrics through non-TSOL hosts gateways ( Index Term Link )
    
U
 
 UFS, mounting in Trusted Solaris ( Index Term Link )
 
 UIDs, effective UID of root ( Index Term Link )
 
 UNIX domain socket, used by cron and its clients ( Index Term Link )
 
 unlabeled hosts, mounting MLDs ( Index Term Link )
 
 updatehome command ( Index Term Link )
 
 upgraded names ( Index Term Link )
 
 User Accounts tool
  assigning rights profiles ( Index Term Link )
  opening an account closed by too many failed logins ( Index Term Link )
  using ( Index Term Link ) ( Index Term Link )
 
 User Templates tool
  advantages ( Index Term Link )
  using ( Index Term Link )
 
 users
  access to devices ( Index Term Link )
  access to printers ( Index Term Link )
  assigning authorizations ( Index Term Link )
  assigning rights ( Index Term Link )
  creating ( Index Term Link ) ( Index Term Link )
  creating templates ( Index Term Link ) ( Index Term Link )
  modifying ( Index Term Link )
  modifying security defaults ( Index Term Link ) ( Index Term Link )
  preventing account locking ( Index Term Link ) ( Index Term Link )
  security training ( Index Term Link ) ( Index Term Link ) ( Index Term Link )
  setting up skeleton directories ( Index Term Link )
  setting up startup files ( Index Term Link ) ( Index Term Link )
  tracking others' jobs ( Index Term Link ) ( Index Term Link )
 
 /usr/dt/appconfig/appmanager/C/System_Admin file, adding an administrative action ( Index Term Link )
 
 /usr/dt/appconfig/types/C/TSOLadmin.dt file, adding an administrative action ( Index Term Link )
    
V
 
 vi command, aliasing to trusted_edit ( Index Term Link )
    
W
 
 window manager ( Index Term Link )
 
 window system, trusted processes ( Index Term Link )
 
 Workspace Menu
  as trusted process ( Index Term Link )
  customizing ( Index Term Link )
    
X
 
 Xtsolusersession script ( Index Term Link )