Go to main content

Securing Users and Processes in Oracle® Solaris 11.4

Exit Print View

Updated: September 2018

Administering Immutable Zones

Immutable zones ensure the integrity of the files on the system. The policy of the zone specifies which files can be modified. Administrators must be authenticated to enter the Trusted Path Domain (TPD) to be able to change files on the system. Oracle Solaris provides several policies for immutable zones that offer trade-offs between flexibility and immutability. The mwac(7) man page describes the policies that can be applied to make a zone immutable, and the tpd(7) man page describes the Trusted Path Domain.

Chapter 12, Configuring and Administering Immutable Zones in Creating and Using Oracle Solaris Zones describes how to configure and administer immutable zones.