Go to main content

Trusted Extensions Configuration and Administration

Exit Print View

Updated: December 2017

Quick Reference to Trusted Extensions Administration

Trusted Extensions interfaces extend the Oracle Solaris OS. This appendix provides a quick reference of the differences. For a detailed list of interfaces, including library routines and system calls, see List of Trusted Extensions Man Pages.

Administrative Interfaces in Trusted Extensions

Trusted Extensions provides interfaces for its software. The labeladm command enables and disables the labeld service, and sets the label_encodings file for a Trusted Extensions system. The following interfaces are available only when Trusted Extensions software is running:

txzonemgr script

Provides a menu-based wizard for creating, installing, initializing, and booting labeled zones. The title of the menu is Labeled Zone Manager. This script also provides menu items for networking options, naming services options, and for making the global zone a client of an existing LDAP server. In the Oracle Solaris 11 release, the txzonemgr -c command bypasses the menus to create the first two labeled zones.

Device Manager

In Trusted Extensions, this GUI is used to administer devices. The Device Administration dialog box is used by administrators to configure devices.

The Device Allocation Manager is used by roles and regular users to allocate devices. The GUI is available from the Trusted Path menu.

Label Builder

This application is invoked when the user can choose a label or a clearance. This application also appears when a role assigns labels or label ranges to devices, zones, users, or roles.

The tgnome-selectlabel utility allows you to customize a label builder. See tgnome-selectlabel Utility in Trusted Extensions Developer’s Guide,

Selection Manager

This application is invoked when an authorized user or authorized role attempts to upgrade or downgrade information.

Trusted Path menu

This menu handles interactions with the trusted computing base (TCB). For example, this menu has a Change (Login/Workspace) Password menu item. In Trusted GNOME, you access the Trusted Path menu by clicking the trusted symbol at the left of the trusted stripe.

Administrative commands

Trusted Extensions provides commands to obtain labels and perform other tasks. For a list of the commands, see Command Line Tools in Trusted Extensions.