You are previewing Oracle Solaris 11 System Administration: The Complete Reference.
O'Reilly logo
Oracle Solaris 11 System Administration: The Complete Reference

Book Description

Take Full Advantage of the Oracle Solaris 11 Management Features Manage a highly scalable, cloud-based computing platform and deliver unmatched performance levels at every layer of your IT stack. Oracle Solaris 11 System Administration: The Complete Reference shows how to deploy Solaris from scratch. Get up-to-date details on installation options, device configuration,virtualization techniques, network security, file encryption, and Web services.

Table of Contents

  1. Cover 
  2. Copyright
  3. Dedication
  4. About the Author
  5. Contents at a Glance
  6. Contents 
  7. Foreword
  8. Acknowledgments
  9. Introduction
  10. 1 The Basics of Oracle Solaris 11
    1. Welcome to Oracle Solaris 11
      1. So, Why Should You Use Oracle Solaris 11?
      2. A New Name, a New Owner, a Familiar Operating System
      3. Solaris Now “Goes to 11”
      4. A Short Review of Solaris’ Long History
      5. The Future of Solaris
      6. Solaris 11 Licensing
      7. Solaris Communities
    2. Solaris 11 Documentation
      1. For Those Moving from Solaris 10 to Solaris 11
    3. Summary
    4. Reference
  11. 2 Getting Ready for Solaris 11
    1. Where Solaris 11 Runs: Hardware Requirements
      1. The Application Guarantee Program
    2. Testing Your x86 System for Solaris 11 Compatibility
    3. The Oracle Solaris 11 Live Media
      1. Running the Solaris 11 Live Media
      2. Preparing Your x86 System for Solaris 11 Installation
      3. Disk Partitions
      4. Other Installation Methods
    4. Summary
    5. References
  12. 3 Installation Options
    1. How to Get Solaris 11
      1. Downloads
      2. Licensing
      3. Write to DVD
      4. Write to a USB Key
      5. A Focus on Workstations
    2. A Range of Installation Scenarios
      1. New Systems
      2. Linux
      3. Microsoft Windows
      4. Solaris 10
      5. Notes on Virtual Machines
    3. The GUI Interactive Installation
      1. Boot the Live Media
      2. Answer Basic Questions
      3. Start the Interactive GUI Installation
      4. Basic Parameters
      5. Risks
      6. Partitions for Solaris and More
      7. Time Zones and Locales
      8. Users and Hostnames
      9. Final Step
    4. Multiboot Situations
      1. GRUB on Solaris
      2. A GRUB Option for Windows
      3. A GRUB Option for Linux
      4. Configure a GRUB Password
      5. A Triple-Boot Scenario
    5. Summary
    6. References
  13. 4 Alternative Oracle Solaris 11 Installation Methods
    1. SPARC and x86 Systems
      1. Solaris 11 on x86 and SPARC Systems: What’s the Same?
      2. Solaris 11 on x86 and SPARC Systems: What’s Different?
    2. The Text Install Method
    3. The Automated Installer
      1. The Distribution Constructor
      2. Booting Client Systems from the AI Server
      3. Transitioning from JumpStart to Automated Installer for Solaris 10 Administrators
    4. Configuring Oracle Solaris 11
      1. Unconfiguring a Solaris 11 System
      2. (Re)configuring a Solaris 11 System
    5. Installing Solaris as a Virtual Machine Guest
      1. The Oracle Solaris 11 VM for Oracle VM VirtualBox
      2. Oracle VM for SPARC
    6. Summary
    7. References
  14. 5 The Solaris Graphical Desktop Environment
    1. The Default Solaris GUI
      1. A Fully Featured Desktop Environment
      2. The UNIX Client Server Model for GUIs
      3. Command-line Access
    2. The GNOME Desktop Environment
      1. The Desktop Pop-up Menu
      2. Applications Menu
      3. Places Menu
      4. Installing the OpenOffice.org Suite
    3. System Menu
      1. System Preferences
      2. System Administration Menu
    4. Summary
    5. References
  15. 6 Service Management
    1. Solaris Service Concepts
      1. What Is a Solaris 11 Service?
      2. Service Naming
      3. Service Categories
      4. Service States
    2. SMF Programs
      1. Listing Services
      2. Starting and Stopping Services
    3. Defining Services
      1. Service Manifests
      2. Creating a Service Manifest
    4. Boot Services
      1. Boot Milestone Services
      2. Other SMF Tools
      3. inetd Services
    5. Service Troubleshooting
      1. Using the svcs Program for Service Diagnostics
    6. Summary
    7. References
  16. 7 The Image Packaging System (IPS)
    1. IPS Basics
      1. IPS Repositories
      2. The IPS pkg Program
    2. Installing Application Software
      1. Using the pkg Command
      2. Updating Application Software
      3. Other Useful pkg Subcommands
      4. Configuring Local Repositories
    3. Boot Environments
      1. Managing Boot Environments
      2. Updating the Operating System Kernel
    4. The IPS GUI
      1. Software Installation and Update (Using the GUI)
      2. Boot Environment Management (Using the GUI)
    5. Summary
    6. References
  17. 8 Solaris at the Command Line
    1. Basic Navigation
      1. Command Manuals
      2. The Current Working Directory
      3. Changing Directories
      4. File Lists
      5. The PATH
      6. Special Characters
    2. File Management
      1. The Basic touch Command
      2. File Copies
      3. Moving a File
      4. Deleting a File
      5. File Links
      6. Directory Management
    3. Reading Text Files
      1. Identifying File Types
      2. Outputting Files to the Screen
      3. Top and Bottom File Readers
      4. The File Pagers
    4. File Manipulation
      1. Lines, Words, and Characters
      2. Finding Files Locally
      3. Search Within a File
      4. File Redirection and More
    5. Options for File Editing
      1. The vi Editor
      2. One Other Text Editor
    6. Summary
    7. References
  18. 9 Filesystems and ZFS
    1. Disk Structure and Naming Conventions
    2. Introduction to ZFS
      1. Some ZFS Terminology
      2. ZFS Commands
      3. Using ZFS
      4. ZFS as the Root/Boot Filesystem
      5. ZFS for Managing HOME Directories
      6. ZFS Snapshots
      7. ZFS Devices
      8. Time Slider
    3. Summary
    4. References
  19. 10 Customize the Solaris Shells
    1. Shell Management
      1. A Choice of Shells
      2. Interactivity
      3. Command Completion
      4. Configuration Files
    2. Shell Tips and Tricks
      1. Data Flows In and Out
      2. When There’s Only One Command Line
      3. All Manner of Shell Characters
    3. Scripts and the Shell
      1. The Basics of Shell Scripts
      2. Study Available Scripts
      3. Sample Scripts
    4. Summary
    5. References
  20. 11 Users and Groups
    1. User Concepts
      1. Standard Users
      2. System Accounts
      3. The Root Account
      4. Role Based Access Control (RBAC) and Administrative Privileges
    2. Local Configuration Files
      1. Commands Used for Managing Users and Groups
      2. Command-line Account Management
      3. GUI Account Management
    3. Basic LDAP User Database
      1. LDAP and NIS
      2. An LDAP Data Interchange Format File
      3. Client Profiles
      4. Extend LDAP to a Network
      5. LDAP and Other Services
    4. Summary
    5. References
  21. 12 Solaris 11 Security
    1. Installation and Initial Configuration Security
      1. root Is a Role
      2. Hardening and Minimizing the OS Installation
    2. Managing File Access
      1. Basic UNIX File Access Permissions
      2. Additional File Protections: umask
      3. Additional File Protections: encryption
    3. Password Management
      1. Changing Passwords
      2. Setting Password Policies
    4. Role Based Access Control (RBAC)
      1. The All-Powerful root User
      2. What’s a Role?
      3. Privileged Execution with sudo
    5. System Auditing
      1. The auditd Daemon
    6. The IP Filter Firewall
      1. Configuring IP Filter
    7. Remote Access
      1. The ssh Server
      2. The ssh Client
    8. Another Security Feature
    9. Summary
    10. References
  22. 13 System Performance
    1. First, Know Your System!
      1. What Hardware Do I Have?
      2. What OS Software Do I Have?
    2. Observing Your System
      1. What to Look For
      2. How to Look: Observability Tools
      3. Log Files
    3. System Tuning
      1. Kernel Parameters
      2. Other Resource Controls
    4. DTrace
      1. Some DTrace Tools
      2. Some DTrace Examples
      3. Some Performance-Monitoring Guidelines
      4. The Performance Monitor GUI
    5. Oracle Hardware and Software Support
    6. Summary
    7. References
  23. 14 Solaris Virtualization
    1. Introduction: Zones and Virtualization
    2. Quick Tour with Zones
    3. Basic Zones Administration
      1. Creating Zones
      2. Zone Login, Boot, and Shutdown
    4. Resources and Zones
      1. Zones and ZFS Datasets
      2. Adding a Directory from the Global Zone
      3. Zone Access to the DVD-ROM Drive
      4. Removing a Resource
      5. Adding an NFS Mount
    5. Advanced Zones Administration
      1. CPU Allocation
      2. CPU Shares and the Fair Share Scheduler
      3. Observing CPU Allocation
      4. Memory Allocation
    6. Zone Performance and Statistics
    7. Zones and Discrete Privileges
    8. More Zones Administration
      1. Cloning
      2. Changing a Zone’s Name and Its Root Dataset
      3. Zone Backup and Restore
      4. Zone Rehosting
      5. Solaris10 Branded Zones
    9. Tips, Tricks, and Pitfalls
      1. hostid
      2. Profile for Automatic Installer
      3. Interactive sysconfig to Create Profile XML
    10. Summary
    11. Reference
  24. 15 Print Management
    1. Print Service Options
      1. CUPS, the Print Service
      2. Related Packages
    2. The Internet Print Protocol (IPP) and CUPS
      1. Basic Components
      2. Basic Commands
      3. Set Up a Printer Administrator
      4. The Printer Configuration Tool
      5. A Printer Class Is a Group of Printers
      6. Print Server Configuration
      7. Connect to a Remote Print Server
      8. The Other Printer Configuration Tool
    3. The Files of CUPS
      1. The Main CUPS Server Configuration File: cupsd.conf
      2. Additional CUPS Configuration Options
      3. Configured Printers in printers.conf
      4. Configured Groups of Printers
      5. Printers Shared via Samba
      6. Print Server Log Files
    4. Summary
  25. 16 DNS and DHCP
    1. The Domain Name Service
      1. DNS Background
      2. DNS Configuration Concepts
      3. A Key Solaris Difference
      4. Different DNS Servers
      5. DNS Packages
      6. Key DNS Commands
      7. A New Way to Configure a DNS Client
      8. DNS Client Configuration Files
      9. DNS Server Configuration
      10. DNS Server Configuration in SMF
      11. Creating a DNS Forwarding Name Server
      12. Extending DNS for a Primary or Secondary Server
      13. DNS Logging
      14. DNS Database Files
      15. Troubleshooting
    2. The Dynamic Host Configuration Protocol (DHCP)
      1. The DHCP Management Tool
      2. DHCP Configuration Files
      3. The ISC DHCP Server
      4. The DHCP Client
    3. Summary
    4. References
  26. 17 Mail Services
    1. A sendmail Configuration Plan
    2. Customizing sendmail
      1. Basic Procedures
      2. Customizing the Configuration for a Local System
      3. Mail Clients on a Network
      4. Creating a New Configuration File
      5. Virtual Hosts and sendmail
      6. sendmail and Transport Layer Security
      7. Files that .forward
    3. Alias Management in sendmail
      1. Postmaster Aliases
      2. Local Aliases
      3. Alias Maps and NIS
    4. Mail Queue Management
      1. Contents of the Mail Queue
      2. Processing the Mail Queue
      3. Changing Mail Queues
    5. Troubleshooting sendmail
      1. Testing Basic Operation
      2. Testing the Configuration
      3. Reviewing Aliases
      4. Mail Logs
      5. Error Messages
    6. Summary
    7. References
  27. 18 Solaris Trusted Extensions
    1. Overview of Trusted Extensions
    2. Enabling Trusted Extensions
      1. Zones and Trusted Extensions
      2. Enabling Trusted Extensions
      3. The label_encodings File
      4. Trusted Extensions Tips and Pitfalls
    3. Creating and Installing a Labeled Zone
    4. A Detour into the Shared-ip and Exclusive-ip Zones
      1. Some Observations, More Tips, and Pitfalls
    5. Adding Roles and Users
      1. User Logins and Roles
    6. Multilevel Workspace
      1. Switching Roles
    7. Managing Devices in Trusted Extensions
    8. Network Access with Trusted Extensions
    9. Summary
    10. References
  28. 19 The Network File System
    1. Available Versions
      1. NFS Version 2
      2. NFS Version 3
      3. NFS Version 4
      4. Additional Common Features
      5. NFS Service Configuration
      6. NFS Configuration Files
    2. Options for Sharing
      1. Basic NFS Filesystem Sharing
    3. Client Configuration Options
      1. Mount from the Command Line
      2. During the Boot Process
      3. Automount on Demand
      4. Log Management
      5. Version Control
      6. Firewall Considerations
    4. Summary
    5. References
  29. 20 The FTP and Secure Shell Services
    1. Secure and Insecure Communications
      1. Insecure Remote Connections
      2. FTP and SFTP Client Commands
    2. Configure an FTP Server
      1. FTP Server Files and Utilities
      2. Review the Default FTP Server Configuration File
      3. Set Up a Basic Anonymous FTP Server
      4. A chroot Jail for ProFTPD
      5. Set Up Guest Users
      6. Basic Security on FTP
      7. User Security
      8. Host Security
      9. Virtual Hosts on FTP
    3. The Configuration of an SSH Server
      1. General Configuration
      2. Secure Shell Client Commands
      3. The Main Client Configuration File
      4. Additional Files in the /etc/ssh Directory
      5. Private and Public Key Pairs for SSH
      6. The Main SSH Server Configuration File
      7. Additional Security in the SSH Server Configuration
      8. More Security with TCP Wrappers
      9. More Security with Passphrases
      10. Different Algorithms
      11. Send That Passphrase to an SSH Server
      12. More Security with Hashed Hosts
    4. Summary
    5. References
  30. 21 Solaris and Samba
    1. Basic Features
      1. UNIX Samba on Solaris
      2. The Basics of UNIX Samba
      3. The Standard Samba Configuration File
      4. Client Commands
      5. The SWAT Tool
    2. Solaris CIFS
      1. Make Sure UNIX Samba Is “Off”
      2. The Solaris CIFS Packages
      3. Configure a Mapping Strategy
      4. Set Up Membership in a Workgroup or Domain
      5. Set Up WINS and Related Services
      6. Configure CIFS Users and Groups
      7. Mapping Users and Groups
      8. Create a ZFS Share for Solaris CIFS
      9. Use the sharemgr Command to Create a CIFS Share
      10. Mount a Share
      11. The Automouter and Home Directories
      12. Troubleshooting Issues
    3. Summary
    4. References
  31. 22 Apache and the Web Stack
    1. Basic Components
      1. The AMP Stack
      2. GUI AMP Installation
      3. Keep Modules to a Minimum
    2. Basic Apache Configuration
      1. Configuration Files
      2. Apache as a Regular Host
      3. Apache with Virtual Hosts
      4. Secure Hosts
    3. Apache Security
      1. Firewall Review
      2. Host-based Security
      3. User-based Security
      4. Secure Certificates
      5. Isolating Apache Within a Zone
    4. Summary
    5. References
  32. A Oracle Solaris 11 11/11 Quick Command Reference
    1. System Information
    2. Services (SMF)
    3. Package Management (IPS)
    4. Boot Environments
    5. ZFS Filesystem
    6. Users and Roles
    7. Network Administration
    8. Performance Monitoring
    9. Zones (Containers2)
    10. References
  33. B Oracle Solaris 11 11/11 Information Library File
  34. Index