Trusted Extensions Administrator's Procedures

January 2013

Explains how to maintain the Trusted Extensions feature of Oracle Solaris on one or more systems.

Document Information
Preface
1. Trusted Extensions Administration Concepts
- Trusted Extensions Software and the Oracle Solaris OS
- Basic Concepts of Trusted Extensions
2. Trusted Extensions Administration Tools
- Administration Tools for Trusted Extensions
- txzonemgr Script
- Trusted CDE Actions
- Device Allocation Manager
- Solaris Management Console Tools
- Label Builder in Trusted Extensions
- Command Line Tools in Trusted Extensions
- Remote Administration in Trusted Extensions
3. Getting Started as a Trusted Extensions Administrator (Tasks)
- What's New in Trusted Extensions
- Security Requirements When Administering Trusted Extensions
  - Role Creation in Trusted Extensions
  - Role Assumption in Trusted Extensions
- Getting Started as a Trusted Extensions Administrator (Task Map)
4. Security Requirements on a Trusted Extensions System (Overview)
- Configurable Oracle Solaris Security Features
- Security Requirements Enforcement
- Rules When Changing the Level of Security for Data
  - sel_config File
- Customization of Solaris Trusted Extensions (CDE)
  - Front Panel Customization
  - Workspace Menu Customization
5. Administering Security Requirements in Trusted Extensions (Tasks)
- Common Tasks in Trusted Extensions (Task Map)
6. Users, Rights, and Roles in Trusted Extensions (Overview)
- User Security Features in Trusted Extensions
- Administrator Responsibilities for Users
  - System Administrator Responsibilities for Users
  - Security Administrator Responsibilities for Users
- Decisions to Make Before Creating Users in Trusted Extensions
- Default User Security Attributes in Trusted Extensions
  - label_encodings File Defaults
  - policy.conf File Defaults in Trusted Extensions
- Configurable User Attributes in Trusted Extensions
- Security Attributes That Must Be Assigned to Users
  - Security Attribute Assignment to Users in Trusted Extensions
  - .copy_files and .link_files Files
7. Managing Users, Rights, and Roles in Trusted Extensions (Tasks)
- Customizing the User Environment for Security (Task Map)
- Managing Users and Rights With the Solaris Management Console (Task Map)
- Handling Other Tasks in the Solaris Management Console (Task Map)
8. Remote Administration in Trusted Extensions (Tasks)
- Secure Remote Administration in Trusted Extensions
- Methods for Administering Remote Systems in Trusted Extensions
- Remote Login by a Role in Trusted Extensions
  - Remote Role-Based Administration From Unlabeled Hosts
  - Remote Login Management in Trusted Extensions
- Administering Trusted Extensions Remotely (Task Map)
9. Trusted Extensions and LDAP (Overview)
- Using a Naming Service in Trusted Extensions
  - Non-Networked Trusted Extensions Systems
  - Trusted Extensions LDAP Databases
- Using the LDAP Naming Service in Trusted Extensions
10. Managing Zones in Trusted Extensions (Tasks)
- Zones in Trusted Extensions
- Global Zone Processes and Labeled Zones
- Zone Administration Utilities in Trusted Extensions
- Managing Zones (Task Map)
11. Managing and Mounting Files in Trusted Extensions (Tasks)
- Sharing and Mounting Files in Trusted Extensions
- NFS Mounts in Trusted Extensions
- Sharing Files From a Labeled Zone
- Access to NFS Mounted Directories in Trusted Extensions
  - Home Directory Creation in Trusted Extensions
  - Changes to the Automounter in Trusted Extensions
- Trusted Extensions Software and NFS Protocol Versions
- Backing Up, Sharing, and Mounting Labeled Files (Task Map)
12. Trusted Networking (Overview)
- The Trusted Network
- Network Security Attributes in Trusted Extensions
- Trusted Network Fallback Mechanism
- Overview of Routing in Trusted Extensions
- Administration of Routing in Trusted Extensions
13. Managing Networks in Trusted Extensions (Tasks)
- Managing the Trusted Network (Task Map)
- Configuring Trusted Network Databases (Task Map)
- Configuring Routes and Checking Network Information in Trusted Extensions (Task Map)
- Troubleshooting the Trusted Network (Task Map)
14. Multilevel Mail in Trusted Extensions (Overview)
- Multilevel Mail Service
- Trusted Extensions Mail Features
15. Managing Labeled Printing (Tasks)
- Labels, Printers, and Printing
- Managing Printing in Trusted Extensions (Task Map)
- Configuring Labeled Printing (Task Map)
- Reducing Printing Restrictions in Trusted Extensions (Task Map)
16. Devices in Trusted Extensions (Overview)
- Device Protection With Trusted Extensions Software
- Device Allocation Manager GUI
- Enforcement of Device Security in Trusted Extensions
- Devices in Trusted Extensions (Reference)
17. Managing Devices for Trusted Extensions (Tasks)
- Handling Devices in Trusted Extensions (Task Map)
- Using Devices in Trusted Extensions (Task Map)
- Managing Devices in Trusted Extensions (Task Map)
- Customizing Device Authorizations in Trusted Extensions (Task Map)
18. Trusted Extensions Auditing (Overview)
- Trusted Extensions and Auditing
- Audit Management by Role in Trusted Extensions
- Trusted Extensions Audit Reference
19. Software Management in Trusted Extensions (Tasks)
- Adding Software to Trusted Extensions
  - Oracle Solaris Security Mechanisms for Software
  - Evaluating Software for Security
    - Developer Responsibilities When Creating Trusted Programs
    - Security Administrator Responsibilities for Trusted Programs
- Trusted Processes in the Window System
  - Adding Trusted CDE Actions
- Managing Software in Trusted Extensions (Tasks)
  - How to Add a Software Package in Trusted Extensions
  - How to Install a Java Archive File in Trusted Extensions
A. Quick Reference to Trusted Extensions Administration
- Administrative Interfaces in Trusted Extensions
- Oracle Solaris Interfaces Extended by Trusted Extensions
- Tighter Security Defaults in Trusted Extensions
- Limited Options in Trusted Extensions
B. List of Trusted Extensions Man Pages
- Trusted Extensions Man Pages in Alphabetical Order
- Oracle Solaris Man Pages That Are Modified by Trusted Extensions
Index
- A
- B
- C
- D
- E
- F
- G
- H
- I
- J
- K
- L
- M
- N
- O
- P
- R
- S
- T
- U
- V
- W
- X
- Z

Skip Navigation Links
	Trusted Extensions Administrator's Procedures Oracle Solaris 10 1/13 Information Library