Virtual Network Computing (VNC) technology connects a client to a remote server, then displays the desktop of the remote server in a window on the client. Xvnc is the UNIX version of VNC, which is based on a standard X server. In Trusted Extensions, a client on any platform can connect to an Xvnc server that is running Trusted Extensions, log in to the Xvnc server, then display and work on a multilevel desktop.
For more information, see the Xvnc(1) and vncconfig(1) man pages.
Before You Begin
You have installed and configured Trusted Extensions on this system that will be used as the Xvnc server. The global zone on this system has a fixed IP address.
This system recognizes the VNC clients by hostname or by IP address. Specifically, the admin_low security template identifies either explicitly or by using a wildcard the systems that can be VNC clients of this server. For more information about configuring the connection securely, see How to Limit the Hosts That Can Be Contacted on the Trusted Network.
If you are currently running in a GNOME session on the console of the future Trusted Extensions Xvnc server, you do not have Desktop Sharing enabled.
You are in the root role in the global zone of the future Trusted Extensions Xvnc server.
# pkg search vnc ... set VNC client based on the TigerVNC open source release that displays a session over RFB protocol from a VNC server pkg:/desktop/remote-desktop/tigervnc@version ... set X Window System server based on X.Org Foundation open source release and TigerVNC open source release that displays over RFB protocol to a VNC client pkg:/x11/server/xvnc@version ...
One option is the TigerVNC X11/VNC server software.
# pkg install server/xvnc # pkg install remote-desktop/tigervnc
% xhost +si:localuser:root
For more information, see the xhost(1) and Xsecurity(5) man pages.
Modify the GNOME Display Manager (gdm) custom configuration file. In the /etc/gdm/custom.conf file, type Enable=true under the [xdmcp] heading.
DISPLAY=unix:$(echo $DISPLAY|sed -e s/::ffff://|cut -d: -f2)
The files in Step 2 and Step 3 are marked with the package attribute preserve=true. For information about the effect this attribute has on your modified files during package upgrades and package fixes, see the pkg(5) man page.
# svcadm enable xvnc-inetd
# svcadm restart gdm
Wait about one minute for the desktop manager to restart. Then, a VNC client can connect.
% svcs | grep vnc
For the client system, you have a choice of software. You can use VNC software from the Oracle Solaris repository.
For information about preselecting audit events per system and per user, see Configuring the Audit Service in Managing Auditing in Oracle Solaris 11.3.
% /usr/bin/vncviewer Xvnc-server-hostname
For command options, see the vncviewer(1) man page.
Continue with the login procedure. For a description of the remaining steps, see Logging In to Trusted Extensions in Trusted Extensions User’s Guide.
In this example, two developers are using the GNOME Vino service to share the display from the Launch → System → Preferences → Desktop Sharing menu. In addition to the preceding steps, they relax Trusted Extensions policy by enabling the XTEST extension.
# pfedit /usr/X11/lib/X11/xserver/TrustedExtensionsPolicy ## /usr/X11/lib/X11/xserver/TrustedExtensionsPolicy file ... #extension XTEST extension XTEST ...