- Creating and Using Oracle Solaris Kernel Zones

Creating and Using Oracle Solaris Kernel Zones

Exit Print View

» ...Documentation Home » Oracle Solaris 11.2 Information Library » Creating and Using Oracle Solaris Kernel Zones » Administering Oracle Solaris Kernel Zones » Working With Kernel Zones and Immutable Zones » How to Configure a Kernel Zone as an Immutable ...

Updated: December 2014

Creating and Using Oracle Solaris Kernel Zones

Document Information

Using This Documentation

Chapter 1 Planning and Configuring Oracle Solaris Kernel Zones

Chapter 2 Installing, Shutting Down, Cloning, and Migrating Oracle Solaris Kernel Zones

Chapter 3 Administering Oracle Solaris Kernel Zones

Language:

How to Configure a Kernel Zone as an Immutable (Read-Only) Zone

Become an administrator.
For more information, see Using Your Assigned Administrative Rights in Securing Users and Processes in Oracle Solaris 11.2 .
Boot the kernel zone.
```
# zoneadm kernel-zone-name boot
```
Log into the kernel zone.
```
# zlogin kernel-zone-name
```

Set the immutable zone from within the kernel zone.

kernel-zone-name# zonecfg -z global set file-mac-profile=value

For example:

kzone1# zonecfg -z global set file-mac-profile=flexible-configuration
	updating /platform/i86pc/amd64/boot_archive

Reboot the kernel zone.
```
kernel-zone-name# reboot
```

Copyright © 2014, Oracle and/or its affiliates. All rights reserved. Legal Notices