HP-UX Containers (SRP) A.03.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX Containers (SRP)

100

Templates Description

to install a separate instance of the Oracle database software inside the

container, you do not need to use this template. See 16.8.5 Oracle template.

custom

(Optional) Accommodates additional application. Allows defining application

specific compartment access rules, ipfilter rules and provisioning. See 16.8.6

Custom template

16.8.1 Workload template

The workload template includes the following services and variables:

Table 16.2 Services for the workload template

Services Description

cmpt*

Manages configuration data for an HP-UX Security Containment compartment,

which forms the core of the container.

admin*

Defines the users and groups allowed to execute the srp start, stop, and

status operations.

Defines the users and groups that are allowed to login to a container. Applied

only for container types that share the file system namespace and service

daemons, such as the workload container.

prm

Manages the configuration of the PRM group for the container. You can specify

the PRM CPU and memory allocations for the group.

network

Manages the network configuration of a container.

init*

Manages the core file directory layout and provisioning of system files for the

container.

ipfilter

Configures IPFilter rules for the container that restrict inbound IP packets to the

container's IP interface.

ipsec

Configures HP-UX IPSec policies for the primary network interface of the

container.

(*) required services for workload container.

Table 16.3 Variables for the workload template

Service

Variable

Description

cmpt*

ok_export_dirs

Specifies whether the container directories will be saved in

the exchange file for the export operation ( srp –export)

(Yes or No).

Default: No

export_copy_dirs

Comma separated list of fully qualified directory names to

be copied during the import and export operations.

Default:

var/hpsrp/

container_name

allow_sw_mismatch

Allow import to proceed if software products on the source

and destination systems do not match.

Default: No

admin*

admin_user

Comma separated list of existing user names to be granted

the role of container administrators.