Go to main content

man pages section 7: Standards, Environments, Macros, Character Sets, and Miscellany

Exit Print View

Updated: Thursday, June 13, 2019



trusted_extensions - Solaris Trusted Extensions


The Trusted Extensions feature of Oracle Solaris provides labels for local objects and processes, for zones and file systems, and for network communications. These labels are used to implement a Multilevel Security (MLS) policy that restricts the flow of information based on label relationships. In contrast to Discretionary Access Control (DAC) based on ownership, the MLS policy enforced by Trusted Extensions is an example of Mandatory Access Control (MAC).

By default, Trusted Extensions software is disabled. It is enabled and disabled (but not completely configured) by the labeladm(8) command, and is associated with labeld(8) services, identified by the FMRI pattern:


See Also

label_encodings(5), labels(7), labeladm(8), labeld(8)

Trusted Extensions Configuration and Administration