Solaris Trusted Extensions Installation Issue (6440673)

Solaris Trusted Extensions do not get enabled correctly after installation. Additional steps must be performed before rebooting or the system will hang.

On x86 based systems, the Xorg X Window server does not work once the Solaris Trusted Extensions software has been installed. The Xsun X server must be enabled in order to use a window system.

The following error message is displayed:

NOTICE: template type for hme0 incorrectly configured. 
Change to CIPSO type for 192.029.075.008
NOTICE: hme0 failed: 
Cannot insert CIPSO template for local addr 192.029.075.008
ip_arp_done: init failed
Failed to configure IPv4 interface(s): hme0
Jun 19 11:44:51 svc.startd[7]: svc:/network/physical:default: 
Method "/lib/svc/method/net-physical" failed with exit status 96.
Jun 19 11:44:51 svc.startd[7]: network/physical:default misconfigured: 
transitioned to maintenance (see 'svcs -xv' for details) 

Workaround: Perform the following steps:

1. Become superuser.

2. Install the Solaris OS.

3. Reboot the system.

4. Install Solaris Trusted Extensions.

5. Run the following commands:

   # /usr/sbin/svccfg import /var/svc/manifest/network/tnctl.xml # /usr/sbin/svccfg import /var/svc/manifest/network/tnd.xml # /usr/sbin/svccfg import /var/svc/manifest/system/labeld.xml # /usr/sbin/svcadm mark -It maintenance tnctl # /usr/sbin/svcadm enable tnctl

6. Add the following line for your host in the /etc/security/tsol/tnrhdb file:

   <host IP address>:cipso

7. If the system architecture is x86, run the following command:

   # /usr/sbin/svccfg -s svc:/application/x11/x11-server \ 'setprop options/server = /usr/openwin/bin/Xsun'

8. Reboot the system.

9. Configure the Solaris Trusted Extensions software.