Manualshelf

HP-UX Security Containment Extensions B.11.31.01 Release Notes

ManualsBrandsHP ManualsSoftwareHP-UX 11i Security Containment Software
1234567
1 HP-UX Security Containment Extensions B.11.31.01
HP-UX 11i Security Containment includes three core technologies: compartments, fine-grained
privileges, and role-based access control. Together, these three components provide a highly
secure operating environment without requiring applications to be modified. With HP-UX
Security Containment Extensions, the HP-UX 11i v3 operating system simplifies the configuration
of application containment and enables compartment login restrictions for enhanced application
stacking and workload consolidation.
HP-UX Security Containment Extensions includes the following main components:
The Containment Wizard tool that helps a system administrator setup and configure a
compartment.
The compartment login configuration that enables users and administrators to login directly
to a compartment.
To acquire and install HP-UX Security Containment Extensions, go to Software Depot:
http://www.software.hp.com
Features
HP-UX Security Containment Extensions offers the following features:
Containment Wizard
The application containment wizard, contain, is a tool that helps a system administrator
setup and configure a compartment. The contain tool creates a compartment and configures
the applications specified on the command line for execution in the compartment. After the
compartment has been created and the applications have been configured, the contain
tool gives the user an opportunity to run these applications in the newly created compartment.
The containment wizard then collects the list of required access rules for these applications
and attempts to simplify these rules based on the system administrator's input.
Compartment Login
The compartment login configuration enables users and administrators to login directly to
a compartment. It provides a mechanism to set controls on those users that are allowed to
login to a service running in a specified compartment or prevent access to the system based
on previously configured authorization information.
Documentation
Use the following documents in conjunction with each other when using HP-UX Security
Containment Extensions B.11.31.01:
HP-UX Compartment Login using Secure Shell (SSH)
HP-UX System Administrator's Guide: Security Management
These documents are located at:
http://docs.hp.com
You can find online documentation for the Containment Wizard using the perldoc command
as follows:
# perldoc /usr/sbin/contain
Table 1-1 lists and briefly describes the HP-UX Security Containment Extensions manpages,
which are installed with the product at /usr/share/man/<man_section#>.Z:
Features 5