Contained Within
Find More Documentation
Featured Support Resources
|  Download this book in PDF
Installation
1
- Starting with the Solaris 2.3 release, BSM has been included in the full release and is part of the release media. You do not need to install BSM separately because BSM is now enabled or disabled by running one of two simple scripts. All of the BSM software is included in the initial system installation, provided you install the following packages:
-
-
SUNWcar - Core architecture
-
SUNWcsr - Core SPARC
-
SUNWcsu - Core SPARC
-
SUNWhea - Header files
-
SUNWman - On-line manual pages
- The following procedures should be performed only by root. Additionally, the commands should be run only on a server or standalone system and never on a diskless client.
-
Enabling BSM
- After becoming root, bring the system into the single-user mode using telinit (see the init(1M) man page).
-
- In single-user mode, change directories to the /etc/security/audit directory, and execute the bsmconv script located there. The script sets up a standard Solaris machine to run BSM after a reboot.
-
# cd /etc/security
# ./bsmconv
|
- After the script finishes, halt the system with the telinit command. Then reboot the system to bring it up as a multiuser BSM system.
-
Disabling BSM
- If at some point BSM is no longer required, you can disabled it by running bsmunconv (see the bsmconv(1M) man page). Again, first bring the system into the single-user mode using telinit, then change to the /etc/security/audit directory and run bsmunconv.
-
# cd /etc/security/audit
# ./bsmunconv
|
- After unconverting the system, reboot it to run as a multiuser Solaris machine.
-
BSM and Client-Server Relationships
- The Solaris 2.1 release required two additional procedures for adding and deleting diskless clients from a BSM-enabled system. With the inclusion of BSM in the Solaris 2.3 and later releases, those procedures are no longer necessary. Enabling BSM on a server now automatically enables the BSM features on all of that server's clients.
|
|
