Solaris Trusted Extensions Installation and Configuration for Solaris 10 11/06 and Solaris 10 8/07 Releases


A

	accessing the X server ( )

	accounts
		creating ( )
		planning ( )

	`Action failed. Reconnect to Solaris Zone?` ( )

	actions, See administrative actions

	adding
		LDAP toolbox ( )
		local role with `roleadd` ( )
		local user with `useradd` ( )
		roles ( )
		Trusted Extensions packages ( )
		users by using `lpaddent` ( )
		users who can assume roles ( )
		zone-specific interface ( )

	Additional Trusted Extensions Configuration Tasks ( )

	addresses
		sharing between global and labeled zones ( )
		specifying one IP address per system ( ) ( )

	administrative actions
		Check Encodings ( )
		Clone Zone ( )
		Configure Zone ( )
		Copy Zone ( )
		Create LDAP Client ( )
		Initialize Zone for LDAP ( )
		Install Zone ( )
		Share Logical Interface ( )
		Share Physical Interface ( )
		Shut Down Zone ( )
		Start Zone ( )
		Zone Terminal Console ( ) ( ) ( )

	allocating, tape drive ( )

	allocating devices, for copying data ( )

	Associating Network Interfaces With Zones by Using CDE Actions (Task Map) ( )

	audit planning ( )

	auditing, planning ( )


B

	backing up, previous system before installation ( )

	booting
		zones ( ) ( )


C

	`Cannot reach global zone` ( )

	Check Encodings action ( )

	checking
		`label_encodings` file ( )
		roles are working ( )

	checklists for install team ( )

	`chk_encodings` command ( )

	Clone Zone action ( )

	collecting information
		before installing Trusted Extensions ( )
		for LDAP service ( )
		planning Trusted Extensions installation ( )

	configuration files, copying ( )

	Configure Zone action ( )

	configuring
		as a role or as superuser? ( )
		LDAP for Trusted Extensions ( )
		LDAP proxy server for Trusted Extensions clients ( )
		Solaris Management Console for LDAP ( )
		Trusted Extensions labeled zones ( ) ( )
		Trusted Extensions software ( )

	Configuring an LDAP Proxy Server on a Trusted Extensions Host (Task Map) ( )

	Configuring an LDAP Server on a Trusted Extensions Host (Task Map) ( )

	Configuring the Solaris Management Console for LDAP (Task Map) ( )

	configuring Trusted Extensions
		checklist for install team ( )
		initial procedures ( )
		labeled zones ( ) ( )
		task maps ( )

	console window, troubleshooting not opening ( )

	Copy Zone action ( )

	Create a new zone menu item ( ) ( )

	Create LDAP Client action ( )

	creating
		accounts ( )
		accounts during or after configuration ( )
		home directories ( )
		home directory server ( )
		LDAP client ( )
		LDAP proxy server for Trusted Extensions clients ( )
		LDAP toolbox ( )
		local role with `roleadd` ( )
		local user with `useradd` ( )
		roles ( )
		users who can assume roles ( )
		zones ( )

	Creating Labeled Zones ( )

	Creating the Labeled Zones by Using CDE Actions (Task Map) ( )

	credentials, registering LDAP with the Solaris Management Console ( )


D

	deciding
		to configure as a role or as superuser ( )
		to use a Sun-supplied encodings file ( )

	decisions to make
		based on site security policy ( )
		before installing Trusted Extensions ( )

	deleting
		labeled zones ( )
		Trusted Extensions ( )

	directories, for naming service setup ( )


E

	enabling
		IPv6 network ( )
		LDAP administration from a client ( )
		login to labeled zone ( )

	encodings file, See `label_encodings` file

	error messages, troubleshooting ( )

	`/etc/system` file, modifying for IPv6 network ( )


F

	files, copying from removable media ( )


H

	hardware planning ( )

	Headless System Configuration in Trusted Extensions (Task Map) ( )

	home directories
		creating ( )
		creating server for ( )
		logging in and getting ( )


I

	Initialize Zone for LDAP action ( )

	initializing
		Solaris Management Console ( )
		zones ( )
		zones for LDAP ( )

	install team, checklist for configuring Trusted Extensions ( )

	Install Zone action ( )
		troubleshooting ( )

	installation, See Trusted Extensions installation

	installation menu
		Create a new zone ( ) ( )
		Zone Console ( )

	installing
		See also Trusted Extensions installation
		`label_encodings` file ( )
		Solaris OS for Trusted Extensions ( )
		Sun Java System Directory Server ( )
		Trusted Extensions packages ( )
		zones ( ) ( )

	IPv6
		entry in `/etc/system` file ( )
		troubleshooting ( )


J

	Java wizard, adding Trusted Extensions packages ( )


L

	`label_encodings` file
		checking ( )
		installing ( )
		localizing ( )
		modifying ( )

	Labeled Zone Manager, See `txzonemgr` script

	labeling
		turning on labels ( )
		zones ( ) ( )

	labels
		assigning to named zones ( ) ( )
		on trusted stripe ( )
		planning ( )
		specifying for zones ( ) ( )

	LDAP
		enabling administration from a client ( )
		planning ( )

	LDAP configuration
		creating client ( )
		for Trusted Extensions ( )

	LDAP server
		collecting information for ( )
		configuring multilevel port ( )
		configuring naming service ( )
		configuring proxy for Trusted Extensions clients ( )
		creating proxy for Trusted Extensions clients ( )
		installing in Trusted Extensions ( )
		protecting access logs ( )
		protecting error logs ( )
		registering credentials with Solaris Management Console ( )

	logging in, to a home directory server ( )

	`lpaddent` command ( )


M

	media, copying files from removable ( )

	modifying, `label_encodings` file ( )

	multilevel server, planning ( )


N

	names
		specifying for zones ( ) ( )

	naming
		zones ( ) ( )

	network, See Trusted Extensions network

	`No route available` ( )


P

	planning
		account creation ( )
		administration strategy ( )
		auditing ( )
		data migration ( )
		hardware ( )
		installation ( )
		labels ( )
		LDAP naming service ( )
		network ( )
		NFS server ( )
		printing ( )
		Trusted Extensions configuration strategy ( )
		Trusted Extensions installation ( )
		zones ( )

	Preparing to Create Zones by Using CDE Actions (Task Map) ( )

	printing, planning ( )

	publications, security and UNIX ( )


R

	rebooting
		activating labels ( )
		enabling login to labeled zone ( )

	registering, LDAP credentials with the Solaris Management Console ( )

	removing Trusted Extensions ( )

	requirements for Trusted Extensions
		Solaris installation options ( )
		Solaris installed systems ( )

	roadmaps
		Task Map: Configuring Trusted Extensions ( )
		Task Map: Preparing a Solaris System for Trusted Extensions ( )
		Task Map: Preparing For and Installing Trusted Extensions ( )

	`roleadd` command ( )

	roles
		adding local role with `roleadd` ( )
		creating Security Administrator ( )
		determining when to create ( )
		verifying they work ( )

	root passwords, required in Trusted Extensions ( )


S

	screens, initial display ( )

	security
		install team ( )
		publications ( )
		root password ( )
		site security policy ( )

	Security Administrator role, creating ( )

	Share Logical Interface action ( )

	Share Physical Interface action ( )

	Shut Down Zone action ( )

	site security policy
		common violations ( )
		personnel recommendations ( )
		physical access recommendations ( )
		recommendations ( )
		tasks involved ( )
		Trusted Extensions configuration decisions ( )
		understanding ( )

	Solaris installation options, requirements ( )

	Solaris installed systems, requirements for Trusted Extensions ( )

	Solaris Management Console
		configuring for LDAP ( )
		configuring LDAP toolbox ( )
		enabling LDAP toolbox to be used ( )
		initializing ( )
		loading a Trusted Extensions toolbox ( )
		registering LDAP credentials ( )
		troubleshooting ( ) ( )
		using Trusted Network Zone Configuration tool ( ) ( )
		working with Sun Java System Directory Server ( )

	Solaris OS installation, options that affect Trusted Extensions ( )

	Solaris Trusted Extensions, See Trusted Extensions

	Start Zone action ( )

	starting
		zones ( ) ( )

	Sun Java System Directory Server, See LDAP server


T

	tape devices, allocating ( )

	Task Map: Configuring Trusted Extensions ( )

	Task Map: Preparing a Solaris System for Trusted Extensions ( )

	Task Map: Preparing For and Installing Trusted Extensions ( )

	tasks and task maps
		Additional Trusted Extensions Configuration Tasks ( )
		Associating Network Interfaces With Zones by Using CDE Actions (Task Map) ( )
		Configuring an LDAP Proxy Server on a Trusted Extensions Host (Task Map) ( )
		Configuring an LDAP Server on a Trusted Extensions Host (Task Map) ( )
		Configuring the Solaris Management Console for LDAP (Task Map) ( )
		Creating Labeled Zones ( )
		Creating the Labeled Zones by Using CDE Actions (Task Map) ( )
		Headless System Configuration in Trusted Extensions (Task Map) ( )
		Preparing to Create Zones by Using CDE Actions (Task Map) ( )

	`tcp_listen=true` LDAP setting ( )

	toolboxes
		adding LDAP server to `tsol_ldap.tbx` ( )
		loading in Trusted Extensions ( )
		Scope=LDAP ( )

	troubleshooting
		accessing X server ( )
		console window not opening ( )
		`Exception in thread "main" java.lang.NoClassDefFoundError: wizard` ( )
		`Installation of these packages generated errors: SUNWpkgname` ( ) ( )
		IPv6 configuration ( )
		Solaris Management Console ( ) ( )
		Trusted Extensions configuration ( )
		Trusted Network Zones Properties ( )

	Trusted Extensions
		See also Trusted Extensions installation
		differences from Solaris administrator's perspective ( )
		installing ( )
		preparing to install ( ) ( )
		uninstalling ( )

	Trusted Extensions configuration
		adding network databases to LDAP server ( )
		databases for LDAP ( )
		evaluated configuration ( )
		headless systems ( )
		initial procedures ( )
		labeled zones ( ) ( )
		LDAP ( )
		troubleshooting ( )

	Trusted Extensions installation
		collecting information before ( )
		decisions to make before ( )
		division of tasks ( )
		headless systems ( )
		install team responsibilities ( )
		Java wizard ( )
		memory requirements ( )
		`pkgadd` commands ( )
		planning ( )
		planning hardware ( )
		planning installation and configuration strategy ( )
		planning network ( )
		reboot to activate labels ( )
		results before configuration ( )
		task maps ( )
		two-role configuration strategy ( )
		uninstalling ( )

	Trusted Extensions network
		adding zone-specific interface ( )
		enabling IPv6 ( )
		planning ( )

	Trusted Extensions requirements
		root password ( )
		Solaris installation ( )
		Solaris installed systems ( )

	Trusted Network Zones tool
		assigning labels to named zones ( ) ( )
		troubleshooting ( )

	`tsol_ldap.tbx` file ( )

	`txzonemgr` script ( ) ( )


U

	uninstalling Trusted Extensions ( )

	`useradd` command ( )

	users
		adding from NIS server ( )
		adding local user with `useradd` ( )
		creating initial users ( )

	`/usr/sbin/txzonemgr` script ( ) ( ) ( )


V

	verifying
		roles are working ( )
		zone status ( )


W

	workspaces, initial display ( )


Z

	ZFS, unsupported but fast zone creation method ( )

	ZFS pools, creating for cloning zones ( )

	Zone Console, output ( )

	Zone Terminal Console action
		output ( ) ( )
		using ( )

	zones
		adding network interface ( )
		associating zone names with labels ( ) ( )
		booting ( ) ( )
		creating ( )
		creating ZFS pool for cloning ( )
		customizing ( )
		deciding creation method ( )
		deleting ( )
		enabling login to ( )
		halting ( )
		initializing ( )
		initializing for LDAP ( )
		installing ( ) ( )
		showing zone activity ( ) ( ) ( )
		shutting down ( )
		specifying a shared IP address ( )
		specifying labels ( ) ( )
		specifying names ( ) ( )
		specifying one IP address for all zones ( ) ( )
		starting ( )
		troubleshooting access ( )
		troubleshooting installation ( )
		`txzonemgr` script ( )
		`/usr/sbin/txzonemgr` script ( ) ( )
		verifying status ( )