Site Security Policy and Oracle Solaris

The security administrator must design the network based on the site's security policy. The security policy for Oracle Solaris systems dictates configuration decisions, such as the following:

• How much auditing is done for all users and for which classes of events

• How much auditing is done for users in roles and for which classes of events

• How audit data is managed, archived, and reviewed

  See Managing Auditing in Oracle Solaris 11.4.

• Which systems are labeled and which users and processes run at a higher clearance

  See Chapter 3, Labeling Files for Data Loss Protection in Securing Files and Verifying File Integrity in Oracle Solaris 11.4.

• Which individuals or roles are assigned which clearances

  See Chapter 6, Labeling Processes for Data Loss Protection in Securing Users and Processes in Oracle Solaris 11.4.