|Skip Navigation Links|
|Exit Print View|
|Oracle Solaris Trusted Extensions Administrator's Procedures Oracle Solaris 10 8/11 Information Library|
Managing software in Trusted Extensions is similar to managing software on an Oracle Solaris system that has installed non-global zones. For details about zones, see Part II, Zones, in System Administration Guide: Oracle Solaris Containers-Resource Management and Oracle Solaris Zones.
Before You Begin
You must be in a role that can allocate a device.
This procedure downloads a Java archive (JAR) file to the global zone. From the global zone, the administrator can make it available to regular users.
Before You Begin
The security administrator has verified that the source of the Java program is trustworthy, that the method of delivery is secure, and that the program can run in a trustworthy manner.
You are in the System Administrator role in the global zone. In Trusted CDE, the Software Installation rights profile includes the Open action for Java code.
For example, if you are selecting software from http://www.sunfreeware.com, use the site's “Solaris pkg-get tool” instructions.
Example 19-1 Downloading a JAR File to a User Label
To limit the security risk, the system administrator downloads the software to a single label within a regular user's accreditation range. Then, the security administrator tests the JAR file at that label. When the software passes the test, the security administrator then downgrades the label to ADMIN_LOW. The system administrator installs the software on an NFS server to make it available to all users.
First, the system administrator creates a workspace at a user label.
In that workspace, he downloads the JAR file.
At that label, the security administrator tests the file.
Then, the security administrator changes the label of the file to ADMIN_LOW.
Finally, the system administrator copies the file to an NFS server whose label is ADMIN_LOW.