|Skip Navigation Links|
|Exit Print View|
|Trusted Extensions Configuration and Administration Oracle Solaris 11 Information Library|
Trusted Extensions software uses labels to control printer access. Labels are used to control access to printers and to information about queued print jobs. The software also labels printed output. Body pages are labeled, and mandatory banner and trailer pages are labeled.
The system administrator handles basic printer administration. The security administrator role manages printer security, which includes labels and how the labeled output is handled. The administrators follow basic Oracle Solaris printer administration procedures, then they assign labels to the print servers and printers.
Trusted Extensions software supports both single-level and multilevel printing. By default, single-level printing is configured. Multilevel printing is implemented in the global zone only. To use the global zone's print server, a labeled zone must be configured as an IP instance or as a vnic. The address must be distinct from the global zone's IP address.
Users and roles on a system that is configured with Trusted Extensions software create print jobs at the label of their session. The print jobs can print only on printers that recognize that label. The label must be in the printer's label range.
Users and roles can view print jobs whose label is the same as the label of the session. In the global zone, a role can view jobs whose labels are dominated by the label of the zone.
Printers that are configured with Trusted Extensions software print labels on the printer output. Printers that are managed by unlabeled print servers do not print labels on the printer output. Such printers have the same label as their unlabeled server. For example, an Oracle Solaris print server can be assigned an arbitrary label. Users can then print jobs at that arbitrary label on the Oracle Solaris printer. As with Trusted Extensions printers, those Oracle Solaris printers can only accept print jobs from users who are working at the label that has been assigned to the print server.
Trusted Extensions prints labels on body pages and banner and trailer pages. The information comes from the label_encodings file.
The security administrator can configure user accounts to use printers that do not print labels on the output.
Labeled printing in Trusted Extensions relies on features from Oracle Solaris printing. In the Oracle Solaris OS, the job-sheets option handles banner page creation. To implement labeling, the print job is converted to a PostScript file. Then, the PostScript file is manipulated to insert labels on body pages, and to create banner and trailer pages.