HP-UX Secure Resource Partitions (SRP) A.02.01 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX Containers (SRP) Software

10 Using the oracledb Template .......................................................................................................... 62

10.1 Adding the oracledb Template to an SRP Compartment .............................................................. 62

10.1.1 The cmpt Service ............................................................................................................. 62

10.1.2 The ipfilter Service ........................................................................................................... 63

10.1.3 The provision Service ....................................................................................................... 64

10.2 Replacing or Deleting Oracle SRP Data .................................................................................... 64

11 Using the sshd Template ................................................................................................................ 66

11.1 Adding the sshd Template to an SRP Compartment ................................................................... 66

11.1.1 The cmpt Service ............................................................................................................. 66

11.1.2 The ipfilter Service ........................................................................................................... 67

11.1.3 The provision Service ....................................................................................................... 67

11.2 Replacing or Deleting SSHD SRP Data ...................................................................................... 69

12 Starting and Stopping SRP Compartments ........................................................................................ 70

12.1 SRP Startup and Shutdown Processing ...................................................................................... 70

12.2 Starting an SRP Compartment .................................................................................................. 71

12.3 Stopping an SRP Compartment ................................................................................................ 71

13 Managing SRP Data ..................................................................................................................... 72

13.1 Creating an SRP Compartment or Adding Data to a Compartment ............................................... 72

13.2 Deleting Configuration Data .................................................................................................... 73

13.3 Replacing Configuration Data ................................................................................................. 74

13.4 Displaying Help Text and Input Parameters ............................................................................... 75

13.5 Listing Information About SRP Compartments ............................................................................. 75

13.6 Displaying status of SRP Compartments ..................................................................................... 75

13.7 Listing SRP Configuration Data ................................................................................................. 76

13.8 Using srp in Batch Mode ......................................................................................................... 76

13.9 Backing Up and Recovering Configuration Data ........................................................................ 76

13.9.1 The srp -Backup Command ............................................................................................... 76

13.9.2 The srp -Restore Command ............................................................................................... 77

14 Customizing SRP Data ................................................................................................................... 78

14.1 Modifying Provision Scripts ..................................................................................................... 78

14.2 Modifying Compartment Rule Include Files ................................................................................ 78

14.2.1 Securing SRP Compartments with Compartment Rule Include Files ......................................... 78

14.3 Manually Editing SRP Configuration Data ................................................................................. 79

14.3.1 Tag Formats .................................................................................................................... 79

15 Exporting and Importing SRPs ........................................................................................................ 82

15.1 Using the srp –export Command .............................................................................................. 82

15.2 Using the srp -import Command ............................................................................................... 83

15.3 Best practices for Exporting and Importing an SRP ..................................................................... 83

16 Using Serviceguard with SRP.......................................................................................................... 85

16.1 Choosing a Model ................................................................................................................. 85

16.2 Creating an SRP to Use with Serviceguard ................................................................................ 85

16.3 Adapting Serviceguard Scripts for the Classic Model ................................................................. 86

16.4 Creating Serviceguard Scripts for the SRP Package Model .......................................................... 87

17 Verifying and Troubleshooting SRP ................................................................................................. 88

17.1 Verification Procedures ........................................................................................................... 88

17.1.1 Verifying SRP Subsystems ................................................................................................. 88

17.1.2 Verifying Security Containment Compartment Data.............................................................. 88

17.1.3 Verifying RBAC Data ....................................................................................................... 89

17.1.4 Verifying PRM Data ......................................................................................................... 89

17.1.5 Verifying Network Data ................................................................................................... 90

17.1.6 Verifying IPFilter Data ...................................................................................................... 91

17.1.7 Verifying IPSec Data ........................................................................................................ 91

17.2 Troubleshooting Procedures ..................................................................................................... 92

17.2.1 Using the Security Containment Compartment Discover Feature ............................................ 92

17.2.2 Removing or Disabling IPFilter ........................................................................................... 93