A

-A option, auditreduce command, How to Merge Audit Files From the Audit Trail

-a option

bsmrecord command, How to Display Audit Record Formats

digest command, How to Compute a Digest of a File

encrypt command, How to Encrypt and Decrypt a File

getfacl command, How to Display ACL Entries for a File

Kerberized commands, Overview of Kerberized Commands

mac command, How to Compute a MAC of a File

smrole command, How to Create a Role From the Command Line

absolute mode

changing file permissions

File Permission Modes

How to Change File Permissions in Absolute Mode

changing special file permissions, How to Change Special File Permissions in Absolute Mode

description, File Permission Modes

setting special permissions, File Permission Modes

access

control lists

See ACL

getting to server

with Kerberos, Gaining Access to a Service Using Kerberos

granting to your account

Granting Access to Your Account

Granting Access to Your Account

login authentication with Secure Shell, How to Reduce Password Prompts in Secure Shell

obtaining for a specific service, Obtaining Access to a Specific Service

restricting for

devices

Controlling Access to Devices

Configuring Device Policy

system hardware, Controlling Access to System Hardware

restricting for KDC servers, How to Restrict Access to KDC Servers

root access

displaying attempts on console, How to Restrict and Monitor Superuser Logins

monitoring su command attempts

Limiting and Monitoring Superuser

How to Monitor Who Is Using the su Command

preventing login (RBAC), How to Make root User Into a Role

restricting

Restricting root Access to Shared Files

How to Restrict and Monitor Superuser Logins

Secure RPC authentication, Overview of Secure RPC

security

ACLs, Using Access Control Lists

controlling system usage, Controlling Access to Machine Resources

devices, Configuring Device Policy

file access restriction, Restricting Access to Data in Files

firewall setup

Firewall Systems

Firewall Systems

login access restrictions

Maintaining Login Control

Maintaining Login Control

login authentication, How to Reduce Password Prompts in Secure Shell

login control, Maintaining Login Control

monitoring system usage

Monitoring Use of Machine Resources

Monitoring File Integrity

network control, Controlling Network Access

NFS client-server, Implementation of Diffie-Hellman Authentication

PATH variable setting, Setting the PATH Variable

peripheral devices, Controlling Access to Devices

physical security, Maintaining Physical Security

remote systems, Secure Shell (Overview)

reporting problems, Reporting Security Problems

root login tracking, Limiting and Monitoring Superuser

saving failed logins, How to Monitor Failed Login Attempts

setuid programs, Restricting setuid Executable Files

system hardware, Controlling Access to System Hardware

UFS ACLs, Using Access Control Lists to Protect UFS Files

sharing files, Sharing Files Across Machines

access control list

See ACL

Access Control Lists (ACLs), See ACL

ACL

changing entries, How to Change ACL Entries on a File

checking entries

How to Check if a File Has an ACL

How to Check if a File Has an ACL

commands, Commands for Administering UFS ACLs

copying ACL entries, How to Copy an ACL

default entries for directories

ACL Entries for UFS Directories

ACL Entries for UFS Directories

deleting entries

Commands for Administering UFS ACLs

How to Delete ACL Entries From a File

description

Using Access Control Lists

Using Access Control Lists to Protect UFS Files

directory entries

ACL Entries for UFS Directories

ACL Entries for UFS Directories

displaying entries

Commands for Administering UFS ACLs

How to Display ACL Entries for a File

format of entries, Using Access Control Lists to Protect UFS Files

kadm5.acl file

How to Create a New Kerberos Principal

How to Duplicate a Kerberos Principal

How to Modify the Kerberos Administration Privileges

modifying entries, How to Change ACL Entries on a File

restrictions on copying entries, Using Access Control Lists to Protect UFS Files

setting entries, How to Add ACL Entries to a File

setting on a file, How to Add ACL Entries to a File

task map, Protecting UFS Files With ACLs (Task Map)

user procedures, Protecting UFS Files With ACLs (Task Map)

valid file entries, ACL Entries for UFS Files

acl audit token, format, acl Token

add_drv command, description, Device Policy Commands

adding

ACL entries, How to Add ACL Entries to a File

administration principals (Kerberos)

How to Manually Configure a Master KDC

How to Configure a KDC to Use an LDAP Data Server

allocatable device, How to Make a Device Allocatable

attributes to a rights profile, How to Create or Change a Rights Profile

audit classes

How to Add an Audit Class

How to Add an Audit Class

audit directories, How to Create Partitions for Audit Files

audit policy, How to Configure Audit Policy

auditing of roles, How to Audit Roles

auditing of zones, Planning Oracle Solaris Auditing (Tasks)

cryptomgt role, How to Assign a Role to a Local User

custom roles (RBAC), How to Create a Role From the Command Line

customized role, How to Create a Role From the Command Line

DH authentication to mounted file systems, Administering Authentication With Secure RPC (Tasks)

dial-up passwords, How to Create a Dial-Up Password

hardware provider mechanisms and features, How to Disable Hardware Provider Mechanisms and Features

keys for DH authentication, How to Set Up a Diffie-Hellman Key for an NIS+ Host

library plugin, How to Add a Software Provider

local user, How to Make root User Into a Role

new rights profile, How to Create or Change a Rights Profile

Operator role, How to Create and Assign a Role by Using the GUI

PAM modules, How to Add a PAM Module

password encryption module, How to Install a Password Encryption Module From a Third Party

plugins

cryptographic framework, How to Add a Software Provider

privileges

directly to user or role, How to Assign Privileges to a User or Role

to command, How to Add Privileges to a Command

RBAC properties to legacy applications, How to Add RBAC Properties to Legacy Applications

rights profiles with Solaris Management Console, How to Create or Change a Rights Profile

roles

for particular profiles, How to Create and Assign a Role by Using the GUI

from command line, How to Create a Role From the Command Line

to a user, How to Create and Assign a Role by Using the GUI

with limited scope, How to Create and Assign a Role by Using the GUI

security attributes to legacy applications, How to Add RBAC Properties to Legacy Applications

security-related role, How to Assign a Role to a Local User

security-related roles, How to Create and Assign a Role by Using the GUI

security to devices

How to Change the Device Policy on an Existing Device

Managing Device Allocation

security to system hardware, How to Require a Password for Hardware Access

service principal to keytab file (Kerberos), How to Add a Kerberos Service Principal to a Keytab File

software provider, How to Add a Software Provider

System Administrator role, How to Create and Assign a Role by Using the GUI

user-level software provider, How to Add a Software Provider

admin_server section

krb5.conf file

How to Manually Configure a Master KDC

How to Configure a KDC to Use an LDAP Data Server

administering

ACLs, Protecting UFS Files With ACLs (Task Map)

auditing

audit classes

Audit Classes and Preselection

Audit Classes

Definitions of Audit Classes

audit events, Audit Events

audit files, How to View the Contents of Binary Audit Files

audit records, Audit Records and Audit Tokens

audit trail overflow prevention, How to Prevent Audit Trail Overflow

auditreduce command, How to Merge Audit Files From the Audit Trail

cost control, Controlling Auditing Costs

description, What Is Auditing?

efficiency, Auditing Efficiently

process preselection mask, audit Command

reducing storage-space requirements, Cost of Storage of Audit Data

task map, Oracle Solaris Auditing (Task Map)

in zones

Auditing on a System With Oracle Solaris Zones

Auditing and Oracle Solaris Zones

auditing in zones, How to Plan Auditing in Zones

cryptographic framework and zones, Cryptographic Services and Zones

cryptographic framework commands, Administrative Commands in the Oracle Solaris Cryptographic Framework

cryptographic framework task map, Administering the Cryptographic Framework (Tasks)

device allocation, Managing Device Allocation (Task Map)

device policy, Configuring Device Policy (Task Map)

dial-up logins, How to Create a Dial-Up Password

file permissions

Protecting Files (Task Map)

Protecting Files With UNIX Permissions (Task Map)

Kerberos

keytabs, Administering Keytab Files

policies, Administering Kerberos Policies

principals, Administering Kerberos Principals

metaslot, Administrative Commands in the Oracle Solaris Cryptographic Framework

NFS client-server file security, Implementation of Diffie-Hellman Authentication

password algorithms, Changing the Password Algorithm (Task Map)

privileges, Managing Privileges (Task Map)

properties of a role, How to Change the Properties of a Role

RBAC properties, How to Create or Change a Rights Profile

remote logins with Secure Shell, How to Generate a Public/Private Key Pair for Use With Secure Shell

rights profiles, How to Create or Change a Rights Profile

role password, How to Change the Password of a Role

roles, How to Create and Assign a Role by Using the GUI

roles to replace superuser, How to Plan Your RBAC Implementation

Secure RPC task map, Administering Secure RPC (Task Map)

Secure Shell

clients, Client Configuration in Secure Shell

overview, A Typical Secure Shell Session

servers, Server Configuration in Secure Shell

task map, Configuring Secure Shell (Task Map)

without privileges, Administrative Differences on a System With Privileges

administrative (old) audit class, Definitions of Audit Classes

administrative audit class, Definitions of Audit Classes

AES kernel provider, How to List Available Providers

aes128-cbc encryption algorithm, ssh_config file, Keywords in Secure Shell

aes128-ctr encryption algorithm, ssh_config file, Keywords in Secure Shell

agent daemon, Secure Shell, How to Reduce Password Prompts in Secure Shell

ahlt audit policy

description, Determining Audit Policy

setting, How to Configure Audit Policy

algorithms

definition in cryptographic framework, Terminology in the Oracle Solaris Cryptographic Framework

file encryption, How to Encrypt and Decrypt a File

listing in the cryptographic framework, How to List Available Providers

password

configuration, How to Specify an Algorithm for Password Encryption

password encryption, Password Encryption

all, in user audit fields, audit_user Database

All (RBAC), rights profile, All Rights Profile

all audit class

caution for using, Audit Class Syntax

description, Definitions of Audit Classes

allhard string, audit_warn script, audit_warn Script

allocate command

allocate error state, Allocate Error State

authorizations for, Device Allocation Commands

authorizations required, Commands That Require Authorizations

description, Device Allocation Commands

tape drive, How to Allocate a Device

user authorization, How to Authorize Users to Allocate a Device

using, How to Allocate a Device

allocate error state, Allocate Error State

allocating devices

by users, How to Allocate a Device

forcibly, Forcibly Allocating a Device

task map, Allocating Devices (Task Map)

troubleshooting, How to Allocate a Device

AllowGroups keyword, sshd_config file, Keywords in Secure Shell

AllowTcpForwarding keyword

changing, How to Configure Port Forwarding in Secure Shell

sshd_config file, Keywords in Secure Shell

AllowUsers keyword, sshd_config file, Keywords in Secure Shell

allsoft string, audit_warn script, audit_warn Script

ALTSHELL in Secure Shell, Secure Shell and Login Environment Variables

always-audit classes

audit_user database, audit_user Database

process preselection mask, Process Audit Characteristics

analysis, praudit command, praudit Command

appending arrow (>>), preventing appending, Assigning a Restricted Shell to Users

application audit class, Definitions of Audit Classes

application server, configuring, Configuring Kerberos Network Application Servers

arbitrary audit token

format, arbitrary Token (Obsolete)

item size field, arbitrary Token (Obsolete)

print format field, arbitrary Token (Obsolete)

arcfour encryption algorithm, ssh_config file, Keywords in Secure Shell

ARCFOUR kernel provider, How to List Available Providers

Archive tape drive device-clean script, device_allocate File

archiving, audit files, How to Prevent Audit Trail Overflow

arg audit token, format, arg Token

arge audit policy

and exec_env token, exec_env Token

description, Determining Audit Policy

arge audit policy, setting, How to Audit All Commands by Users

argv audit policy

and exec_args token, exec_args Token

description, Determining Audit Policy

argv audit policy, setting, How to Audit All Commands by Users

ASET

aliases file

description, The uid_aliases File

examples, Aliases File Examples

UID_ALIASES variable, Specifying an Aliases File: UID_ALIASES

aset command

interactive version, How to Run ASET Interactively

-p option, How to Run ASET Periodically

starting, Automated Security Enhancement Tool (ASET)

aset.restore command, Restoring System Files Modified by ASET

ASETDIR variable, ASETDIR Environment Variable

asetenv file

ASET Environment File (asetenv)

Modifying the Environment File (asetenv)

ASETSECLEVEL variable, ASETSECLEVEL Environment Variable

CKLISTPATH_level variable, CKLISTPATH_level Environment Variables

collecting reports, How to Collect ASET Reports on a Server

configuring

Configuring ASET

Modifying the Tune Files

description

Using the Automated Security Enhancement Tool

Automated Security Enhancement Tool (ASET)

environment file, ASET Environment File (asetenv)

environment variables, ASET Environment Variables

error messages, Troubleshooting ASET Problems

execution log, ASET Execution Log

master files

System Files Checks

ASET Master Files

The Checklist Files

NFS services and, Network Operation With the NFS System

PERIODIC_SCHEDULE variable

Scheduling ASET Execution: PERIODIC_SCHEDULE

PERIODIC_SCHEDULE Environment Variable

restoring original system state, Restoring System Files Modified by ASET

running ASET periodically, How to Run ASET Periodically

running interactively, How to Run ASET Interactively

running periodically, How to Run ASET Periodically

scheduling ASET execution

Scheduling ASET Execution: PERIODIC_SCHEDULE

PERIODIC_SCHEDULE Environment Variable

stopping from running periodically, How to Stop Running ASET Periodically

task map, Running ASET (Task Map)

TASKS variable

Choosing Which Tasks to Run: TASKS

TASKS Environment Variable

troubleshooting, Troubleshooting ASET Problems

tune file examples, Tune File Examples

tune files

Tune Files

Modifying the Tune Files

uid_aliases file, The uid_aliases File

UID_ALIASES variable

The uid_aliases File

Specifying an Aliases File: UID_ALIASES

UID_ALIASES Environment Variable

working directory, ASETDIR Environment Variable

YPCHECK variable

Extending Checks to NIS+ Tables: YPCHECK

YPCHECK Environment Variable

assigning

privileges to commands in a rights profile, How to Add Privileges to a Command

privileges to commands in a script, How to Run a Shell Script With Privileged Commands

privileges to user or role, How to Assign Privileges to a User or Role

role to a user

How to Create and Assign a Role by Using the GUI

How to Create and Assign a Role by Using the GUI

role to a user locally, How to Assign a Role to a Local User

assuming role

how to

Configuring RBAC

Using Roles (Task Map)

in a terminal window, How to Assume a Role in a Terminal Window

in Solaris Management Console, How to Assume a Role in the Solaris Management Console

Primary Administrator, How to Assume a Role in a Terminal Window

root, How to Assume a Role in a Terminal Window

System Administrator, How to Assume a Role in a Terminal Window

asterisk (*)

checking for in RBAC authorizations, How to Add RBAC Properties to Legacy Applications

device_allocate file

device_allocate File

device_allocate File

wildcard character

in ASET

PERIODIC_SCHEDULE Environment Variable

Tune File Examples

in RBAC authorizations

Authorization Naming Conventions

user_attr Database

at command, authorizations required, Commands That Require Authorizations

at sign (@), device_allocate file, device_allocate File

atq command, authorizations required, Commands That Require Authorizations

attribute audit token, attribute Token

attributes, keyword in BART, Rules File Attributes

audio devices, security, Device-Clean Scripts

audit administration audit class, Definitions of Audit Classes

audit characteristics

audit ID, Process Audit Characteristics

process preselection mask, audit Command

processes, Process Audit Characteristics

session ID, Process Audit Characteristics

terminal ID, Process Audit Characteristics

user process preselection mask, Process Audit Characteristics

audit_class file

adding a class, How to Add an Audit Class

description, audit_class File

troubleshooting, How to Add an Audit Class

audit class preselection, effect on public objects, Audit Terminology and Concepts

audit classes

adding, How to Add an Audit Class

definitions, Definitions of Audit Classes

description

Audit Terminology and Concepts

Audit Events

entries in audit_control file, audit_control File

exceptions in audit_user database, audit_user Database

exceptions to system-wide settings, Audit Classes and Preselection

mapping events, Audit Classes and Preselection

modifying default, How to Add an Audit Class

overview, Audit Classes and Preselection

prefixes, Audit Class Syntax

preselecting, How to Modify the audit_control File

preselection, Audit Terminology and Concepts

process preselection mask, Process Audit Characteristics

setting system-wide, Audit Classes

syntax

Audit Class Syntax

Audit Class Syntax

system-wide, audit_control File

audit command

description, audit Command

preselection mask for existing processes (-s option), How to Update the Audit Service

rereading audit files (-s option), auditd Daemon

resetting directory pointer (-n option), auditd Daemon

updating audit service, How to Update the Audit Service

verifying syntax of audit_control file (-v option), How to Modify the audit_control File

audit configuration file, See audit_control file

audit_control file

audit daemon rereading after editing, How to Update the Audit Service

changing kernel mask for nonattributable events, How to Update the Audit Service

configuring, How to Modify the audit_control File

description, audit_control File

entries, audit_control File

entries and zones, Auditing and Oracle Solaris Zones

examples, audit_control File

exceptions to flags in audit_user database, audit_user Database

flags line

process preselection mask, Process Audit Characteristics

minfree warning, audit_warn Script

plugin line, How to Configure syslog Audit Logs

prefixes in flags line, Audit Class Syntax

syntax problem, audit_warn Script

system-wide audit, Audit Classes and Preselection

verifying classes, How to Determine That Oracle Solaris Auditing Is Running

verifying syntax, How to Modify the audit_control File

Audit Control rights profile, Rights Profiles for Administering Auditing

audit daemon, See auditd daemon

audit directory

creating, How to Create Partitions for Audit Files

description, Audit Terminology and Concepts

partitioning for, How to Create Partitions for Audit Files

sample structure, auditreduce Command

audit_event file

changing class membership, How to Change an Audit Event's Class Membership

description, Audit Events

removing events safely, How to Prevent the Auditing of Certain Events

audit events

audit_event file, Audit Events

changing class membership, How to Change an Audit Event's Class Membership

description, Audit Events

mapping to classes, Audit Classes and Preselection

selecting from audit trail, How to Select Audit Events From the Audit Trail

selecting from audit trail in zones, Auditing and Oracle Solaris Zones

summary, Audit Terminology and Concepts

viewing from binary files, How to View the Contents of Binary Audit Files

audit files

auditreduce command, auditreduce Command

combining

How to Merge Audit Files From the Audit Trail

auditreduce Command

configuring, Configuring Audit Files (Tasks)

copying messages to single file, How to Select Audit Events From the Audit Trail

limiting size of, How to Limit the Size of Binary Audit Files

managing, How to Prevent Audit Trail Overflow

minimum free space for file systems, audit_control File

names

Binary Audit File Names

Binary Audit File Timestamps

order for opening, audit_control File

partitioning disk for, How to Create Partitions for Audit Files

printing, How to View the Contents of Binary Audit Files

reducing

How to Merge Audit Files From the Audit Trail

auditreduce Command

reducing storage-space requirements

Cost of Storage of Audit Data

Auditing Efficiently

switching to new file, auditd Daemon

time stamps

Binary Audit File Timestamps

Binary Audit File Timestamps

audit ID

mechanism, Process Audit Characteristics

overview, What Is Auditing?

audit logs

See also audit files

comparing binary and textual, Audit Logs

configuring textual audit logs, How to Configure syslog Audit Logs

in text, audit_control File

modes, Audit Logs

audit messages, copying to single file, How to Select Audit Events From the Audit Trail

audit.notice entry, syslog.conf file, How to Configure syslog Audit Logs

audit plugins, summary, Audit Plugins

audit policy

audit tokens from, Audit Policy

defaults, Determining Audit Policy

description, Audit Terminology and Concepts

effects of, Determining Audit Policy

public, Determining Audit Policy

setting, How to Configure Audit Policy

setting ahlt, How to Configure Audit Policy

setting arge, How to Audit All Commands by Users

setting argv, How to Audit All Commands by Users

setting in global zone

Auditing on a System With Oracle Solaris Zones

Auditing and Oracle Solaris Zones

setting perzone, How to Configure Audit Policy

that does not affect tokens, Audit Policy

tokens added by, Audit Policy

updating dynamically, How to Update the Audit Service

audit prerequisite, correctly configured hosts database, How to Enable the Audit Service

audit preselection mask

modifying for existing users, How to Modify a User's Preselection Mask

modifying for individual users, How to Change a User's Audit Characteristics

audit records

audit directories full

auditd Daemon

audit_warn Script

converting to readable format

How to View the Contents of Binary Audit Files

praudit Command

praudit Command

description, Audit Terminology and Concepts

displaying, How to View the Contents of Binary Audit Files

displaying formats of

procedure, How to Display Audit Record Formats

summary, bsmrecord Command

displaying formats of a program, How to Display Audit Record Formats

displaying formats of an audit class, How to Display Audit Record Formats

displaying in XML format, How to View the Contents of Binary Audit Files

events that generate, How Does Auditing Work?

format, Audit Record Structure

formatting example, How to Display Audit Record Formats

merging, How to Merge Audit Files From the Audit Trail

overview, Audit Records and Audit Tokens

reducing audit files, How to Merge Audit Files From the Audit Trail

sequence of tokens, Audit Record Structure

syslog.conf file, How Does Auditing Work?

/var/adm/auditlog file, How to Configure syslog Audit Logs

Audit Review rights profile, Rights Profiles for Administering Auditing

audit session ID, Process Audit Characteristics

audit_startup script

configuring, How to Configure Audit Policy

description, audit_startup Script

audit threshold, audit_control File

audit tokens

See also individual audit token names

added by audit policy, Audit Policy

audit record format, Audit Record Structure

description

Audit Terminology and Concepts

Audit Records and Audit Tokens

format, Audit Token Formats

list of, Audit Token Formats

new in current release, Auditing Enhancements in the Solaris 10 Release

audit trail

analysis costs, Cost of Analysis of Audit Data

analysis with praudit command, praudit Command

cleaning up not terminated files, How to Clean Up a not_terminated Audit File

creating

auditd daemon's role, auditd Daemon

description, Audit Terminology and Concepts

effect of audit policy on, Determining Audit Policy

events included, Audit Classes and Preselection

merging all files, auditreduce Command

monitoring in real time, Auditing Efficiently

no public objects, Audit Terminology and Concepts

overview, How Does Auditing Work?

preventing overflow, How to Prevent Audit Trail Overflow

selecting events from, How to Select Audit Events From the Audit Trail

viewing events from, How to View the Contents of Binary Audit Files

viewing events from different zones, Auditing and Oracle Solaris Zones

audit_user database

exception to system-wide audit classes, Audit Classes and Preselection

prefixes for classes, Audit Class Syntax

process preselection mask, Process Audit Characteristics

specifying user exceptions, How to Change a User's Audit Characteristics

user audit fields, audit_user Database

audit_user file, verifying classes, How to Determine That Oracle Solaris Auditing Is Running

audit_warn script

auditd daemon execution of, auditd Daemon

conditions invoking, audit_warn Script

configuring, How to Configure the audit_warn Email Alias

description, audit_warn Script

strings, audit_warn Script

auditconfig command

audit classes as arguments

Audit Classes and Preselection

Audit Classes

description, auditconfig Command

prefixes for classes, Audit Class Syntax

setting audit policy

How to Configure Audit Policy

How to Audit All Commands by Users

auditd daemon

audit trail creation

auditd Daemon

Audit Trail

audit_warn script

description

audit_warn Script

audit_warn Script

execution of, auditd Daemon

functions, auditd Daemon

order audit files are opened

audit_control File

audit_control File

plugins loaded by, auditd Daemon

rereading information for the kernel, How to Update the Audit Service

rereading the audit_control file

How to Update the Audit Service

How to Update the Audit Service

auditing

all commands by users, How to Audit All Commands by Users

changes in current release, Auditing Enhancements in the Solaris 10 Release

changes in device policy, How to Audit Changes in Device Policy

configuring identically for all zones, How to Configure All Zones Identically for Auditing

configuring in global zone

How to Plan Auditing in Zones

How to Configure Audit Policy

configuring per-zone, How to Configure Per-Zone Auditing

device allocation, How to Audit Device Allocation

disabling, How to Disable the Audit Service

enabling, How to Enable the Audit Service

finding changes to specific files, How to Find Audit Records of Changes to Specific Files

hosts database prerequisite, How to Enable the Audit Service

logins, How to Audit Logins From Other OSes

planning, Planning Oracle Solaris Auditing (Tasks)

planning in zones

How to Plan Auditing in Zones

How to Plan Auditing in Zones

preselection definition, Audit Terminology and Concepts

privileges and, Privileges and Auditing

rights profiles for, Rights Profiles for Administering Auditing

roles, How to Audit Roles

sftp file transfers, How to Audit FTP and SFTP File Transfers

troubleshooting, Troubleshooting Oracle Solaris Auditing (Task Map)

troubleshooting praudit command, How to View the Contents of Binary Audit Files

updating information, How to Update the Audit Service

zones and

Auditing on a System With Oracle Solaris Zones

Auditing and Oracle Solaris Zones

auditlog file, text audit records, How to Configure syslog Audit Logs

auditreduce command, auditreduce Command

-c option, How to Select Audit Events From the Audit Trail

cleaning up audit files, How to Clean Up a not_terminated Audit File

description, auditreduce Command

examples, How to Merge Audit Files From the Audit Trail

filtering options, How to Select Audit Events From the Audit Trail

merging audit records, How to Merge Audit Files From the Audit Trail

-O option, How to Merge Audit Files From the Audit Trail

options, auditreduce Command

selecting audit records, How to Select Audit Events From the Audit Trail

timestamp use, Binary Audit File Timestamps

trailer tokens, and, trailer Token

using lowercase options, How to Select Audit Events From the Audit Trail

using uppercase options, How to Merge Audit Files From the Audit Trail

without options, auditreduce Command

auth_attr database

description, auth_attr Database

summary, Databases That Support RBAC

AUTH_DES authentication, See AUTH_DH authentication

AUTH_DH authentication, and NFS, NFS Services and Secure RPC

authentication

AUTH_DH client-server session, Implementation of Diffie-Hellman Authentication

configuring cross-realm, Configuring Cross-Realm Authentication

description, Authentication and Authorization for Remote Access

DH authentication, Diffie-Hellman Authentication and Secure RPC

disabling with -X option, Overview of Kerberized Commands

Kerberos and, What Is the Kerberos Service?

naming services, Overview of Secure RPC

network security, Authentication and Authorization for Remote Access

NFS-mounted files

How to Share NFS Files With Diffie-Hellman Authentication

How to Share NFS Files With Diffie-Hellman Authentication

overview of Kerberos, How the Kerberos Authentication System Works

Secure RPC, Overview of Secure RPC

Secure Shell

methods, Secure Shell Authentication

process, Authentication and Key Exchange in Secure Shell

terminology, Authentication-Specific Terminology

types, Authentication and Authorization for Remote Access

use with NFS, NFS Services and Secure RPC

authentication methods

GSS-API credentials in Secure Shell, Secure Shell Authentication

host-based in Secure Shell

Secure Shell Authentication

How to Set Up Host-Based Authentication for Secure Shell

keyboard-interactive in Secure Shell, Secure Shell Authentication

password in Secure Shell, Secure Shell Authentication

public keys in Secure Shell, Secure Shell Authentication

Secure Shell, Secure Shell Authentication

authenticator

in Kerberos

Authentication-Specific Terminology

Obtaining a Credential for a Server

authlog file, saving failed login attempts, How to Monitor All Failed Login Attempts

authorizations

Kerberos and, What Is the Kerberos Service?

types, Authentication and Authorization for Remote Access

authorizations (RBAC)

checking for wildcards, How to Add RBAC Properties to Legacy Applications

checking in privileged application, Applications That Check Authorizations

commands that require authorizations, Commands That Require Authorizations

database

Databases That Support RBAC

auth_attr Database

definition, RBAC Authorizations

delegating, Delegation Authority in Authorizations

description

Oracle Solaris RBAC Elements and Basic Concepts

Authorization Naming and Delegation

for allocating device, How to Authorize Users to Allocate a Device

for device allocation, Device Allocation Commands

granularity, Example of Authorization Granularity

naming convention, Authorization Naming Conventions

not requiring for device allocation, How to Change Which Devices Can Be Allocated

solaris.device.allocate

How to Authorize Users to Allocate a Device

Device Allocation Commands

solaris.device.revoke, Device Allocation Commands

authorized_keys file, description, Secure Shell Files

AuthorizedKeysFile keyword, sshd_config file, Keywords in Secure Shell

auths command, description, Commands That Manage RBAC

AUTHS_GRANTED keyword, policy.conf file, policy.conf File

auto_transition option, SASL and, SASL Options

Automated Security Enhancement Tool, See ASET

automatic login

disabling, Overview of Kerberized Commands

enabling, Overview of Kerberized Commands

automatically enabling auditing, audit_startup Script

automating principal creation, Automating the Creation of New Kerberos Principals

auxprop_login option, SASL and, SASL Options