A | |||
auditing | |||
definition ( ) | |||
enabling BSM ( ) | |||
using BSM ( ) | |||
using Solaris Security Toolkit ( ) | |||
authorization | |||
definition ( ) | |||
ldm subcommands ( ) | |||
levels ( ) | |||
read ( ) | |||
read and write ( ) |
B | |||
Basic Security module (BSM) ( ) | |||
auditing ( ) | |||
enabling ( ) | |||
BSM, See Basic Security module | |||
bsmconv(1M) command ( ) |
C | |||
cancel-operation reconf subcommand ( ) | |||
CLI, See command-line interface | |||
command-line interface ( ) | |||
commands | |||
bsmconv(1M) ( ) | |||
ldm(1M) ( ) | |||
ldmconfig(1M) ( ) ( ) ( ) | |||
ldmp2v(1M) ( ) | |||
ssh(1) ( ) | |||
compliance | |||
definition ( ) | |||
using Solaris Security Toolkit ( ) | |||
configuration | |||
baseline for control domain ( ) | |||
factory-default ( ) | |||
mode ( ) | |||
selecting to boot ( ) | |||
storing on service processor ( ) | |||
configuration assistant GUI ( ) | |||
control domain ( ) | |||
baseline configuration ( ) | |||
hardening ( ) ( ) ( ) |
D | |||
daemons | |||
drd ( ) | |||
ldmd ( ) | |||
vntsd ( ) ( ) | |||
delayed reconfiguration ( ) | |||
disable-rpc.fin script ( ) | |||
disable-sma.fin script ( ) | |||
disable-ssh-root-login.fin script ( ) | |||
domains | |||
control ( ) ( ) ( ) ( ) | |||
guest ( ) | |||
primary ( ) | |||
service ( ) ( ) | |||
DR, See dynamic reconfiguration | |||
drivers | |||
customized ( ) ( ) | |||
ldm_control-secure.driver ( ) ( ) ( ) | |||
secure.driver ( ) ( ) | |||
selecting alternate ( ) ( ) | |||
selecting none ( ) | |||
dynamic reconfiguration (DR) ( ) | |||
dynamic reconfiguration daemon (drd) ( ) |
E | |||
enable-ipfilter.fin script ( ) | |||
enable-ldmd.fin script ( ) | |||
enable-ssh-root-login.fin script ( ) | |||
/etc/host.allow file ( ) | |||
/etc/ipf/ipf.conf file ( ) | |||
/etc/ssh/sshd_config file ( ) |
F | |||
factory-default configuration ( ) | |||
files | |||
changed ( ) | |||
/etc/host.allow ( ) | |||
/etc/ipf/ipf.conf ( ) | |||
/etc/ssh/sshd_config ( ) | |||
finish scripts | |||
added ( ) | |||
disabled ( ) |
G | |||
guest domain ( ) |
H | |||
hardening | |||
applying your own ( ) | |||
control domain ( ) ( ) | |||
definition ( ) | |||
other than control domain ( ) | |||
hypervisor ( ) | |||
definition ( ) |
I | |||
install-ldm.fin script ( ) | |||
install-ldm script ( ) ( ) |
J | |||
JASS, See Solaris Security Toolkit | |||
JumpStart | |||
minimal-ldm_control.profile ( ) | |||
minimizing ( ) | |||
JumpStart Architecture and Security Scripts (JASS), See Solaris Security Toolkit |
L | |||
LDC, See logical domain channel | |||
ldm(1M) man page ( ) | |||
ldm(1M)command ( ) | |||
ldm_control-secure.driver ( ) ( ) ( ) | |||
ldm subcommands | |||
cancel-operation reconf ( ) | |||
ls-dom ( ) | |||
user authorizations ( ) | |||
ldmconfig(1M)command ( ) ( ) ( ) | |||
ldmd, Logical Domains Manager daemon ( ) | |||
ldmp2v(1M) command ( ) | |||
logical domain channel (LDC) ( ) | |||
logical domains | |||
definition ( ) | |||
roles ( ) | |||
Logical Domains Manager ( ) ( ) | |||
daemon (ldmd) ( ) | |||
discovery mechanism ( ) | |||
XML schema used with ( ) | |||
XML schemas used with ( ) | |||
ls-dom subcommand ( ) |
M | |||
minimizing | |||
definition ( ) | |||
JumpStart support ( ) | |||
minimal-ldm_control.profile ( ) | |||
using Solaris Security Toolkit ( ) |
P | |||
packages | |||
SUNWjass ( ) | |||
SUNWldm ( ) ( ) | |||
patches, Solaris Security Toolkit ( ) | |||
physical devices ( ) ( ) | |||
physical machine ( ) | |||
platforms | |||
UltraSPARC T1 processor ( ) | |||
UltraSPARC T2 Plus server ( ) | |||
primary domain ( ) | |||
profiles, minimal-ldm_control.profile ( ) |
R | ||||
RBAC, See Role-Based Access Control | ||||
read, authorizing ( ) | ||||
read and write, authorizing ( ) | ||||
resources | ||||
See also virtual devices | ||||
definition ( ) | ||||
Role-Based Access Control (RBAC) ( ) | ||||
roles, logical domains ( ) |
S | |||
scripts | |||
disable-rpc.fin ( ) | |||
disable-sma.fin ( ) | |||
disable-ssh-root-login.fin ( ) | |||
enable-ipfilter.fin ( ) | |||
enable-ldmd.fin ( ) | |||
enable-ssh-root-login.fin ( ) | |||
finish, added ( ) | |||
finish, disabled ( ) | |||
install-ldm ( ) ( ) | |||
install-ldm.fin ( ) | |||
set-term-type.fin ( ) | |||
Solaris Security Toolkit ( ) | |||
secure.driver | |||
changes from ( ) | |||
hardening other than control domain ( ) | |||
Secure Shell (ssh), use instead of Telnet ( ) | |||
security | |||
auditing ( ) | |||
authorization ( ) | |||
compliance ( ) | |||
hardening ( ) | |||
minimizing ( ) | |||
service domain ( ) ( ) | |||
service processor | |||
monitoring and running physical machine ( ) | |||
storing configurations ( ) | |||
set-term-type.fin script ( ) | |||
Solaris Security Toolkit ( ) | |||
required patches ( ) | |||
SUNWjass package ( ) | |||
SUNWldm package ( ) ( ) | |||
system controller, See service processor |
T | |||
Telnet client, access to virtual consoles ( ) | |||
Telnet server, disabled ( ) |
U | |||
UltraSPARC T1 processor ( ) | |||
UltraSPARC T2 Plus server ( ) ( ) |
V | |||
virtual devices ( ) | |||
I/O ( ) | |||
virtual console concentrator (vcc) ( ) | |||
virtual disk client (vdc) ( ) | |||
virtual disk service (vds) ( ) | |||
virtual network (vnet) ( ) | |||
virtual switch (vsw) ( ) | |||
virtual machine ( ) | |||
virtual network terminal server daemon (vntsd) ( ) ( ) |
X | |||
XML schema | |||
Logical Domains Manager used with ( ) ( ) |