Professional Documents
Culture Documents
Primarly influenced by Multics First version of UNIX developed by Ken Thompson in 1969 on DEC PDP for business, scientific and industrial users Originally written in Assembly language for PDP-7 Transportability facilitated by Thompson in B Language B modified by Richie as C Language Thompson and others wrote Unix in C in 1980 to be able to port on any computer
FEATURES OF UNIX
Multitasking Multiuser On line help Communication and Electronic mail
SYSTEM CONCEPTS
UNIX
KERNEL
SHELL
Kernel Shell
APPLICATION SOFTWARE
Applications
KERNEL is the heart of the UNIX operating system. It is next to the hardware. It is responsible for scheluing tasks and managing data storage SHELL is the command interpreter. It is an interfacce between the user and the kernel. APPLICATION SOFTWARE are the specific capabilities added on to the operating system
SHELLS BOURNE prompt - ($) -> DEFAULT SHELL C prompt - (%) -> HAS SYNTAX SIMILAR TO C LANGUAGE KORN prompt - ($) -> BOURNE + ALIASING, HISTORY, ETC.
/ (ROOT)
USR
OPT
DEV
ETC
EXPORT
KERNEL
VAR
lib
sbin
bin
dsk
tty
home
genunix
ssa1
ssa2
HOST
HOST NAME IP ADDRESS SERVER CLIENT
NETWORK
DAEMON MULTITASKING MULTIUSER DISTIBUTED PROCESSING
10
Init Command e.g. init 6 will reboot the System to default run level
Solaris System Administration 12
Boot Command
Shutdown Command
14
halt
poweroff
reboot
Not Recommended
15
16
Resident firmware that provides basic hardware testing & initialization prior to booting. It is used for testing & initializing system hardware determines the configuration boots the operating system provides interactive debugging facilities
Solaris System Administration 17
SYSTEM BOARD
Sbus
BOOT PROM
Custom Driver
ID - PROM
1.x
(ORIGINAL SPARC BOOT PROM)
2.x
(FIRST OPEN BOOT PROM)
3.x
(OBP WITH DOWNLOADABLE FIRMWARE)
19
20
ok
ok
reset
ok
boot
Solaris System Administration 21
nvalias
nvunalias
22
EEPROM COMMAND
23
STOP KEY
stop - a key sequence
puts system into obp command mode. Use sync to synchronize file systems.
stop - n
starts/boots the system with default values.
24
SOLARIS INSTALLATION
25
SOFTWARE GROUPINGS
CONFIGURATION CLUSTERS SOFTWARE CLUSTERS PACKAGE CDE Demos CDE CDE developer s/w CDE DT BUILDER
O P T I O N S
CORE
DISTRIBUTION
Solaris System Administration
SYSTEM INFORMATION
HOST NAME
IP ADDRESS
NAME SERVICE
SUBNET
GEOGRAPHIC LOCATION TIME ZONE INFORMATION ROOT PASSWORD
Solaris System Administration 29
INSTALLATION TYPES
UPGRADE
Initial Precautions
Notify Users Backup Files Shutdown System
INITIAL
(Fresh Installation)
30
LOG OF INSTALLATION
/var/sadm/install_ data/install_log
31
32
BOOT PROCESS
PROM executes POST
Determines Boot device (eg. Disk,net,CD-ROM) Reads Boot Block ( Sector 1- 15) PROM loads Bootblk Program Bootblk loads (ufsboot) program
/sbin/init phase
KERNEL
consists of a two piece static core (unix & genunix) and loadable modules.
LOADABLE MODULES
KERNEL STRUCTURE
Resides in /platform/uname-m/kernel/unix
KERNEL misc drv
fs
exec genunix Sys
Sched
Strmod
Solaris System Administration 35
/etc/system file
Can be customized to change kernel configuration process
moddir - modifies search path for kernel modules. rootdev - determines alternate root device. exclude - modules to be excluded even if referenced. forceload - modules loaded forcibly at boot time.
variable = value
eg. set -pt-cnt =100 set npty = 100 - sets pseudo-ttys to 100.
Take backup before editing .
Solaris System Administration 36
37
3
4 5
Reboot.
Single user mode with user logins disabled.
Solaris System Administration 38
S,s
/etc/inittab
S3 : 3 : wait : |sbin|rc3 >/dev/console 2 < > |dev|console
id rstate action
Command to execute
39
Run entries with sysinit in Action field. Run entries with 3 in rstate field.
40
/etc/rc#.d
daemons/services.
Scripts starting with alphabet k. Scripts starting with alphabet s starts
/etc/init.d
/etc/rc#.d
start
42
43
The /dev directory The rdsk or dsk subdirectory Controller number Target number
Disk number
Slice number
Solaris System Administration 44
Disk Geometry - Describes the no. of heads , sectors and cylinders. Partition Tables - Describes the slices on the disk.
Volume Names - Identifies the disk device (optionally assigned by the system administrator.) Slice Tags - name the standard mount points for each of the slices. Slice Flags - Label whether each slice is writeable and mountable.
Solaris System Administration 45
PARTITIONING DISK
partition> 0 Part 0 Tag root Flag wm Cylinders 0 - 41 Size Blocks 14.77mb(42/0/0)
Enter Partition id tag[root] : <cr> Enter Partition Permission Flags[wm] : <cr> Enter new starting cylinder[0] : <cr> Enter Partition size[30132b, 42c, 14.77mb] : 16mb
Disk Blocks Cylinders Mbytes
Solaris System Administration 47
Slice 1 Slice 0
sectors
15.5MB in 3 cyl groups (16 c/g, 5.90MB/g, 2688 i/g ) super-blocks backups (for fsck -F ufs -o b= #) at : 32, 11632, 23232,
Solaris System Administration 49
BACKGROUND STRUCTURES
VTOC Boot block
Super block Backup Superblock Cylinder group block Inode table
Data block(s)
Data block(s)
Backup Superblock Cylinder group block Inode table
Solaris System Administration 50
File inodes
inode Data blocks Permissions Links and other Information Indirect blocks
0 1 2 3 4 5 6 7 8 9 10 11 12
13
53
FILE SYSTEM
Collection of files & directories used to store & organize information Collection of control structures & data blocks of a partition File Systems
ufs
hsfs
Disk -based
pcfs
NFS
psuedo
Label
1-15
16-31 32
Boot Block
Superblock
Backup superblock
First Cylinder Group 47 Cylinder group block
Inode table
Data Blocks Second Cylinder group
Solaris System Administration 55
CYLINDER GROUPS
56
Inodes
Direct Pointers
Indirect Pointers
inode information
file system data block information
directory information
Solaris System Administration 59
fsck Output
The following is the fsck program when no inconsistencies were discovered: # fsck /dev/rdsk/c0t3d0s7 **last mounted on /export/home **Phase 1 - check blocks and sizes **Phase2 - check pathnames **Phase3 - check connectivity **Phase4 - check Reference counts **Phase5 - check Cyl groups 2 files,9 used, 21606 free
60
du
display disk usage
quota
disk usage by a user
61
MOUNTING FILESYSTEM
format command
creates a slice out of a disk.
newfs command
creates a file system out of a
raw slice.
Solaris System Administration 62
ALTERNATIVE SUPERBLOCKS
MOUNTING FILES
to mount a file system manually # mount /dev/dsk/c0t3d0s7 /export/home to enable UFS logging # mount -o logging /dev/dsk/c0t3s6 /usr to mount a file system with largefiles disabled #mount -o nolargefiles /dev/dsk/c0t3d0s7 /export/home to mount a file system using the content of the /etc/vfstab file #mount /export/home
Solaris System Administration 65
/etc/vfstab file
The /etc/vfstab virtual file system table provides default entries for mounting file system at boot time. The format of the file is one record per line,seven fields per record with a dash(-) indicating a null value for a field. #device device mount fs fsck mount mount #to mount to fsck point type pass at boot ops
#dev/dsk/c1d0s2 /proc fd
/dev/rdsk/c1d0s2 -
/usr /proc
ufs proc
1 -
yes no no -
/dev/fd fd
swap
/tmp
/ /usr /export /opt -
tmpfs
ufs ufs ufs ufs -
1 1 5 8 swap
yes
no no yes
logging logging
/dev/dsk/c0t3d0s7
/dev/dsk/c0t3d0s5 /dev/dsk/c0t3d0s1 -
/dev/rdsk/c0t3d0s7
/dev/rdsk/c0t3d0s5 -
/export/home ufs 5
yes
yes -
logging
logging no
66
mountall commands
mountall -l
Mounts all local filesystems
mountall -r
Mounts all remote filesystems
67
umountall commands
umountall -l
Unmounts all local filesystems
68
/etc/vfstab file
70
determine NFS file system availability from a server #dfshares sun mount a remote resource # mount -f nfs -o ro sun:/usr/share/man /usr/share/man unmount a remote resource # umount /usr/share/man
71
72
ed (Line Editor)
vi (Visual Editor)
73
PACKAGE ADMINISTRATION
74
Objectives
Information of Installed Packages
Adding New Packages
Deleting Packages
Checking Consistencies
Spooling Packages
Solaris System Administration 75
PACKAGE CONTENTS
Description Of Package
Description Of Relationships To Target System
e.g. Disk space required
PACKAGE ADMINISTRATION
COMMANDS
pkginfo
ADMINTOOL
pkgrm
pkgchk pkgadd
77
PKGINFO
Display Software Package Information Command Format pkginfo [-d [device | pathname]]
Device where S/W resides
[-l]
pkg_name
Name Of Package
78
EXAMPLE
a) pkginfo | more
Application SUNWAxg System
Category
SUNWab 2u
System Name
pkgrm
pkgrm <package_name>
warns about possible package dependencies a shared file is removed only when last of sharing package is removed
Solaris System Administration 80
pkgadd
Adds packages Spooling Packages
Checks Package & System Information Verifies Package Requirements Verifies Disk Space Requirements Checks For Package Conflicts Starts the Installation
Solaris System Administration 81
PACKAGE SPOOLING
Copying Package Without Installing it Package -d <device name> -s spool <package name> Default Spool Directory is /var/spool/pkg
PKGCHK
Compares various attributes & contents of package
<package name>
83
Important Files/Directories
/opt/pkgname - Preferred location for unbundled Packages /opt/pkgname/bin OR Preferred location for /opt/bin executables /var/opt/pkgname OR log files of packages /etc/opt/pkgname /var/sadm/install/contents - package map of entire system
PATCH ADMINISTRATION
85
OBJECTIVES
Obtain Patch Information
86
PATCH NUMBERING
1011945-34
PATCH DISTRIBUTION
(revision number)
WWW
FTP Server
87
PATCH FORMATS
compressed tar
# Extracted using
tar xvf <patchfile>
gzip files
# Extracted using
gzip utility (www.gzip.org)
88
IMPORTANT
Never modify/edit contents of files in /var/sadm/patch /var/sadm/patch has historical information of patches installed on system.
89
PATCH VERIFICATION
showrev -p or patchadd -p
PATCH REMOVAL
patchrm <patchnumber>
Solaris System Administration 90
USER ADMINISTRATION
91
OBJECTIVES
92
ADMINTOOL
useradd command
Creates new user account new login remains locked until password command is used Options:
-comment -d <dir> -e -f -g -u -s -o e.g -c trainee e.g -d /home/trainee e.g -e 10/6/99 e.g -f 10 e.g -g other e.g -u 100 e.g -s /bin/sh allows duplication of uid
Solaris System Administration 94
usermod command
Modifies a existing user account e.g
group
95
userdel command
96
Initialization files
contains a series of commands that are executed when a shell is started Customize the environment for that shell
System (Read first) /etc/profile User (Read second/third) $HOME/.profile Template /etc/ skel Local.profile
Shell
Bourne
Korn
/etc/profile
/etc/profile
Local.profile
Local.profile
97
.dtprofile File
is used by CDE users resides in users home directory is created the first time a user logs in
98
/etc/profile Script
/etc/skel directory
skel
Local .cshrc
Local .profile
.profile
Local .login
100
SYSTEM SECURITY
102
OBJECTIVES
SECURITY IN SOLARIS
Password authentication
ACLs
Solaris System Administration 104
SECURITY FILES
/etc/password
/etc/shadow
105
/etc/password
Contains entry for each system user Contains the following information: login ID username x placeholder for password UID number used by system to recognize the user GID number representing users primary group comment home directory
login shell
Solaris System Administration 106
/etc/shadow
password(Encrypted form)
lastchg - no. of days between last password change and 1 Jan 1970
inactive
expire
Solaris System Administration 107
/etc/group
108
SUPERUSER ACCOUNT
shutting down system backing up & restoring file systems mounting & unmounting file resources user management etc.
id command
Identifies user id -a
110
su command
e.g. e.g. chown user1<files> chgrp grp1 file1 or chown -R dir1 or chown -R user:grp1 dir1
Solaris System Administration 112
/etc/default directory
passwd
controls system-wide password aging variables: - MAXWEEKS
-MINWEEKS -PASSLENGTH
login
restricting super user access variables:
-PASSREQ -CONSOLE
Solaris System Administration
su
logging su attempts
113
who
who -u
finger
displays detailed user a/c information
last
login & logout information
sulog
/var/adm/sulog
114
PROCESS CONTROL
115
OBJECTIVES
ps command
kill command & options
Process Status
ps Lists processes currently running on system
options
-e :- information of all processes -f :- full listing
117
pgrep
displays process id of process matching pattern
pkill
kills the process matching pattern
Usage
pgrep [-options] pattern pkill [-options] pattern
Options
-u :- matching UID -f :- a regular expression -t :- matching the terminal -G :- matching GID number e.g pkill -U user1 mails
Solaris System Administration 119
Process Manager
proctool
120
at command
Executes a command or script at a specified time /etc/cron.d/at.deny:-identifies users who cannot use at command
USAGE:
time [date]
By default the cron.deny file prohibits crontab use from the following system users:
124
125
126
2
1
Write
Execute
Solaris System Administration 127
128
umask filter
Determine the default permissions for files and directories Assigns permissions during the creation of new files and directories Displays your umask $ umask 022 Enables users to set their own umask value
131
setfacl command
Syntax
setfacl [options] acl_entry filename1 [filename2...] Options -m Creates or modifies an ACL -s Replaces the entire ACL with new ACL -d Deletes ACL entries -r Recalculates ACL permissions acl_entry Is an ACL entry filename Is a file or directory which contains the ACL entries
Solaris System Administration 132
EXAMPLES
getfacl command
e.g.
$ ls -l /bin/passwd /etc/shadow -r-sr-sr-x 3 root sys 99640 sep 1 1998 /bin/passwd -r-------- 1 root sys 493 Apr 12 16:13 /etc/shadow
135
controlling modification of files e.g. #chmod 4755 setuid_program #chmod 2755 setgid_program creating shared directories #chmod g+s some-directory
Solaris System Administration 136
Determining the characteristics of a directory with set sticky bit identifying sticky permission $ ls -ld /var/tmp drwxrwxrwxt 2 sys sys 512 may 26 11:02 /var/tmp setting the sticky permission # chmod 1777 project # ls -ld project drwxrwxrwxt 2 root other 512 nov 15 14:30 project #chmod a=rwxt project $ ls -ld project drwxrwxrwxt 2 root other 512 nov 15 4:30 project
Solaris System Administration 137
DEVICE ADMINISTRATION
138
Used by system administrator to reference devices These names are symbolically linked to their corresponding physical device name The logical names are located in the /dev directory and are created at the time when the physical names are created
Solaris System Administration 139
t1
t6
t0
scsi ctlr
scsi ctlr
scsi ctlr
d0 s5
d1 s0 s6
d2
s6
/dev/dsk/c0t0d0s0
/dev/dsk/c0t0d0s0
/dev/dsk/c0t0d0s1
s1
/dev/[r]dsk/c# t# d# s#
Controller number
Target number
Logical unit number
Slice number
141
ide sd
Device Instances
BSD NAMES
dsk/c0t3d0s0
144
dmesg command
145
/sbus@1f,0 0 sbus /sbus@1f,0/espdma@e,84000 0 dma /sbus@1f,0/espdma@e,84000/esp@e,88000 0 esp /sbus@1f,0/espdma@e,84000/esp@e,88000/sd@3,0 3 sd /sbus@1f,0/espdma@e,84000/esp@e,88000/sd@2,0 2 sd /sbus@1f,0/espdma@e,84000/esp@e,88000/sd@1,0 1 sd /sbus@1f,0/espdma@e,84000/esp@e,88000/st@3,0 3 st /sbus@1f,0/espdma@e,84000/esp@e,88000/st@5,0 5 st /sbus@1f,0/espdma@e,84000/esp@e,88000/st@4,0 4 st /sbus@1f,0/espdma@e,84000/esp@e,88000/st@1,0 1 st ses /sbus@1f,0/espdma@e,84000/esp@e,88000/ses@0,0 0 ses
Solaris System Administration 146
prtconf command
Displays systems configuration like memory & peripherals.
format command
Displays logical & physical device names.
147
RECONFIGURING DEVICES
To add new devices
1. Create a /reconfigure file.
SOLARIS NETWORKING
149
IP ADDRESSING
Class A
Class B
large networks
Class C
Small/Mid size Network
(upto 16 million)
(upto 65000)
128-191
(upto 254)
192-223
1-127
150
NETWORKING FILES
/etc/inet/hosts or
/etc/nodename /etc/hostname.hme0
/etc/hosts
151
/etc/inet/hosts
/etc/hostname.hme0
identifies ethernet interface to be configured at boot up contains hostname or its ip address
/etc/nodename
REMOTE ACCESS
Files
Commands
rsh
rlogin
/etc/hosts.equiv $home/.rhosts
rcp
154
/etc/hosts.equiv
hostname2 userlist
Solaris System Administration 155
$HOME/. rhosts
e.g $ cat $HOME/.rhosts hostname1 -> all users of hostname1 hostname2 -> user1 of hostname2
Solaris System Administration 156
rlogin
Logging in remotely
rsh
syntax :rsh [-l username] hostname <command> e.g. rsh -l ssa1 venus ls - al
/var/mail
158
rcp
159
160
NFS TERMINOLOGY
NFS SERVER -- An NFS file server designates local file resources to be shared with other systems on the network
NFS Client -- An NFS client machine mounts file resources that are shared over a network and treats the file systems if they were local
162
Files:
/etc/dfs/dfstab /etc/dfs/sharetab /etc/rmtab
Files:
/etc/vfstab and /etc/mnttab
Commands:
share,unshare, shareall, unshareall, dfshares and dfmounts
Solaris System Administration
Commands:
mount,umount, mountall, umountall, dfshares and dfmounts
163
NFS DAEMONS
mountd daemon
mountd : responds to a client mount request with a file handle nfsd : processes subsequent client file operation requests statd and lockd - provide crash and recovery functions
Solaris System Administration 164
the system enters run level 3 root executes the shareall command the /etc/init.d/nfs.server script runs
Solaris System Administration 165
SYNTAX
OPTIONS
ro rw root = client ro = access - list rw = access - list
Solaris System Administration 166
unshare command
-F nfs pathname
167
Command format
shareall [-F nfs]
168
Edit the /etc/dfs/dfstab file. Start the server daemons verify the intended sharing
169
Examples
#dfshares
resource
venus:/usr/share/man
server
venus
access
-
transport
-
#dfshares mars
resource
mars:/export
server
mars
access
-
transport
170
Example
# dfmounts
Resource
-
Server
venus
Pathname
/usr/share/man
CLIENTS
earth,pluto
171
Command format
Options
mount at boot
yes
mount options
soft.bg
venus:/usr/man
/usr/man nfs
173
174
TROUBLESHOOTING NFS
Unknown host
rpcbind failure
176
BACKUP PREPARATIONS
Preparing to back up file systems begins with planning and covers choosing :
A tape drive
A backup schedule
Solaris System Administration 177
UFSDUMP
TO..
Do a full backup Do an incremental backup backup individual files Specify a cartidge tape
For Example
ufsdump 0ucf /dev/rmt/0 / ufsdump 9ucf /dev/rmt/0 / ufsdump ucf /dev/rmt/0/export/home/kryton ufsdump 9ucf /dev/rmt/0/export/home/
-c option
178
180
cpio
It copies special files or filesystems those require multiple tape volumes It packs data onto tape more efficiently than tar It skips over any bad sectors in atape while restoring It provides options for writing files with different header formats (tar, cdc, crc etc) for portability between different system tapes It creates multiple tape volumes
Solaris System Administration 181
-i -c
184
The following example retrieves all the files with the suffix chapter from the tape in drive 0.
$ cd /home/smith/book $ cpio -icv *chapter < /dev/rmt/0 Boot.chapter Directory.chapter Install.chapter Intro.chapter 31 blocks $ ls-l
Solaris System Administration 186
Device Naming
Berkeley(Sun OS 4.x) Compatibility
/dev/rmt/XAbn
Optional No-rewind n no-rewind omit for rewind Optional Density l low m medium h high u ultra c compressed
Drive 0 1 2 3 4 n
188
NETWORK TROULESHOOTING
190
COMMANDS
snoop netstat ifconfig ping traceroute
191
netstat
192
snoop
Used for capturing & inspecting network packets. Can only be run by supervisor. Displays contents of highest level protocol e.g. Examine Broadcast packets # snoop broadcast Using device -d (promiscous mode) mach 1 -- 128.50.255.255 RUSERS C mach 5 -- 128.50.255.255 RUSERS C -v verbose can be used for detailed information
ifconfig
# ifconfig -a
Syntax :
ifconfig<interface_name><ipaddress> up/down
194
ping
Used to check network connectivity Uses Icmp Syntax : ping [-s] -I[internal] host -s -- continuously sends data packets.
195
traceroute
Prints the route taken by ICMP packets to reach a network host from another
Used to check fault on a network Syntax : #traceroute <ip address of the destination host)
Solaris System Administration 196
LP PRINT SERVICES
197
Client-server model
Printing System
Print service software Sunsoft Print client software Print filters Hardware
Solaris System Administration 198
199
Contents
The LP print service user commands. LP server configuration files. The terminfo database directory. The LP print service administration commands. LP daemons, directories for binary files, and PostScriptfilters. LP daemon logs Spooling directory for pending requests.
Solaris System Administration 200
/var/lp/logs /var/spool/lp
PRINT FUNCTIONS
Queuing Tracking
Fault notification
Initialization
Filtering
Solaris System Administration 201
Matching print requests to printers Determining printer types Checking for defined printer types # ls /user/share/lib/terminfo/e
ep2500+high ep2500+low ep40 ep400 ep4080 ergo4000 epson2500 epson2500-80 epson2500-hi epson2500-hi80
PRINTING ENVIRONMENT
203
lpsched
Selects printer /var/spool/lp/requests/system /var/spool/lp/tmp/system
Filter request
Interface Program
DOCUMENT
PRINTER
Solaris System Administration 205
REMOTE PRINTING
inetd
In.lpd
lpsched
To printer
Spool area
206
At least 32 Mbytes of RAM. Enough swap space to augment RAM and support print services.
208
lp command
Command Name lp lpstat cancel lpadmin accept reject lpmove enable disable Description Sends file to a printer Displays print service status Cancels print requests Performs various administration tasks Enables queuing of print requests Prevents queuing of further print requests Moves print requests Enables printer to print requests Disables printer from printing requests
Solaris System Administration 209
lpstat command
Used to display a users print queue Syntax :
lpstat [-options]
-a -d -o -p Reports whether print destinations are accepting requests. Displays the name of the default printer. Displays the status of all output requests on printers. Displays the idle or busy status and availability of all printers. Determines what printers are configured for the system on which you are working. Displays all status information, the combined output of all other options, plus the list of queued print requests.
Solaris System Administration 210
-s -t
# lpadmin -d sparky
# lpstat -d system default destination: sparky
211
TROBLESHOOTING A PRINTER
$ lpstat -o
# /etc/init.d/lp stop
# /etc/init.d/lp start
JUMPSTART INSTALLATIONS
213
NETWORK INSTALLATION
Servers Required
Install Server
Boot Server
Name Server
214
INSTALL SERVER
Creating Install Server
Run setup_install_server
eg ./setup_install_server /export/install
215
BOOT SERVER
Creating Boot Server
ADDING CLIENTS
add_install_client
-c server:jumpstart_dir_path
-s install_server:install_dir_path -e ethernet address -p server:sysidcfg_path host_name
platform_group
217
TASKS
218
eg mkdir /jmpstart
219
eg cp -r auto_install_sample/* /jmpstart
220
Editing the bootparams file and updating the name service if required
eg * install_config=server:jumpstart_dir_path
221
What is a profile?
222
223
Creating profile
224
Profile Examples
# Profile keywords profile values install_type system_type partitioning filesys cluster package initial_install standalone default any 60 swap SUNWCall SUNWman delete
Solaris System Administration 225
Rules file
rules.ok file
Rules file is a look-up table consisting of one or more rules that define matches between system attributes and profiles
226
Add a rule in the rules file for each group of systems that need to be installed
The rules file must have at least one rule Rule must have at least a rule keyword, a rule value, and a corresponding profile
Solaris System Administration 227
Syntax
[!] rule_keyword rule_value [&& [!] rule_keyword rule_value] begin profile finish
Syntax(Contd.)
Rule_value- Value that provides the specific system attribute for the corresponding rule keyword
Syntax(Contd.)
Profile- Name of text file used as a template that defines how to install solaris on a system
finish- Name of an optional bourne shell script that can be executed after the installation
completes
230
Rule Example
Rule keyword and value begin script profile finish script
hostname noida-1
prof1
prof2
genprof
231
Rules file
Rules file must have file name rules Rules.ok file is a generated version of the rules file and is required by the jumpstart installation software to match system to a profile
232
233
Check file
Check script is used to validate the rule and profile file. It does the following
Checks the rule file for syntax check the profile file for syntax If no errors are found, check creates the rule.ok file
./check -r file_name
Solaris System Administration 234
Check file
Check script is used to validate the rule and profile file. It does the following
Checks the rule file for syntax check the profile file for syntax If no errors are found, check creates the rule.ok file
./check -r file_name
Solaris System Administration 235
NIS+
236
What is NIS+?
Network name service that stores information such as workstation addresses, security information, mail information, ethernet interface information at a central location
What is NIS+?
Each domain is supported by a set of servers Prinicipal server is called the master server Backup server is called replica server Network information is stored in 16 standard NIS+ tables
Changes made to the NIS+ data on the master server are automatically propagated to the replicas
Solaris System Administration 238
239
Nsswitch.conf file
This file identifies a particular type of network information, such as host, password and group, followed by one or more sources, such as NIS+ tabkes, dns or local /etc
NIS+ Scripts
241
Configuring NIS+
242
Defaults used in root server Security level 2(DES) System information files(/etc) as the source of name service information
243
If using DES authentication, specify the diffiehellman key length eg nisauthconf dh640-0 des
nisserver -r -d nis_domainname
244
Check for no spurious entries in /etc files Remove all dots and underscores in host names Better make copies of /etc files and populate only the information you want to populate
Domain must have been configured and master server must be running
246
Specify the Diffie-Hellman key length On the master server type nisauthconf. Use the output of this as an argument to nisauthconf on the client
247
The domain must have been configured and its master server must be running
nisclient -u
249
NIS+ Servers
Client machines can be changed into NIS+ servers of the following types
NIS+ Servers
rpc.nisd
251
Root Replica
The domain must have been configured and its master server must be running
252
Root Replica
253
Creating Subdomain
The parent domain must have already been configured and its master server must be
running
Creating Subdomain
255
256