Manualshelf

HP-UX Secure Resource Partitions (SRP) A.02.02 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX Containers (SRP)
41424344454647484950
46
The /var/hpsrp/srp_name/sbin/init.d/srp_net file is linked to
/var/hpsrp/srp_name/sbin/init.d/rc2.d/S340srp_net and
/var/hpsrp/srp_name/sbin/init.d/rc1.d/K660srp_net.
For more information about SRP initialization and shutdown scripts, see 14 Starting and Stopping
SRP Compartments.
Security Containment Compartment
SRP adds a network interface rule for the IP address to the compartment rule file
(/etc/cmpt/srp_name.rules). This allows the SRP access to its IP address.
8.1.5 The init Service
The init service creates startup and shutdown scripts for the compartment, and an SRP -specific
/var/hpsrp/<srp name>/sbin/init.d directory structure that replicates the /sbin/init.d
directory structure. SRP also configures the autostart feature for the SRP so that the system startup
and shutdown scripts automatically execute the SRP startup and shutdown scripts.
8.1.5.1 Input Data
SRP prompts for the following data. You can also specify a variable name and value in the command
line, as described in
15.1 Creating an SRP Compartment or Adding Data to an SRP.
Autostart SRP
at system boot
Specifies if you want the SRP to be started at system boot time.
Variable Name: autostart.
Default: yes.
8.1.5.2 Configuration Data
SRP configures the following data:
SRP adds the following entries to the /etc/rc.config.d/srpconf file to enable the
autostart feature for the compartment:
SRP_NAME[n]="srp_name"
START_SRP[n]=1
Where n is a unique index number and srp_name is the name of the SRP compartment.
SRP creates \ SRP-specific init subdirectories below the
/var/hpsrp/srp_name/sbin that contain startup and shutdown scripts. For more
information about the directory structure, files, and how they are executed at system startup
and shutdown time, see 14 Starting and Stopping SRP Compartments.
8.1.6 The login Service
The login service enables you to specify the set of HP-UX users and HP-UX user groups whose
members are authorized to log in to the SRP compartment. If you do not configure the login service
and you are using the default RBAC system configuration, only the root user is authorized to log in
to the compartment.
You can use the login service to grant non-root users the authorization to log in to the compartment.