Solaris Trusted Extensions Installation and Configuration for Solaris 10 11/06 and Solaris 10 8/07 Releases

ProcedureCreate the Home Directory Server in Trusted Extensions

Before You Begin

You must be superuser, in the root role, or in the Primary Administrator role.

  1. Install and configure the home directory server with Trusted Extensions software.

    • If you are cloning zones, make sure that you use a Solaris ZFS snapshot that has empty home directories.

    • Because users require a home directory at every label that they they can log in to, create every zone that a user can log in to. For example, if you use the default label_encodings file, you would create a zone for the PUBLIC label.

  2. If you are using UFS and not Solaris ZFS, enable the NFS server to serve itself.

    1. In the global zone, modify the automount entry in the nsswitch.conf file.

      Use the trusted editor to edit the /etc/nsswitch.conf file. For the procedure, see How to Edit Administrative Files in Trusted Extensions in Solaris Trusted Extensions Administrator’s Procedures.


      automount: files
    2. In the global zone, run the automount command.

  3. For every labeled zone, follow the automount procedure in How to NFS Mount Files in a Labeled Zone in Solaris Trusted Extensions Administrator’s Procedures. Then, return to this procedure.

  4. Verify that the home directories have been created.

    1. Log out of the home directory server.

    2. As a regular user, log in to the home directory server.

    3. In the login zone, open a terminal.

    4. In the terminal window, verify that the user's home directory exists.

    5. Create workspaces for every zone that the user can work in.

    6. In each zone, open a terminal window to verify that the user's home directory exists.

  5. Log out of the home directory server.