Oracle Solaris 10 System Administration 1

ProTech Professional Technical Services, Inc.

Course Summary

Description

This course teaches basic to intermediate topics in Solaris 10 system administration. The operating system will be Oracle Solaris 10 (SunOS 5.10 Release 1/13 U11).

Objectives

After taking this course, students will be able to:

Course Outline Course  Understand how to use essential command  Understand security issues and system line utilities hardening techniques related to DISA STIG  Perform system boot and shutdown requirements procedures on SPARC systems  Manage system processes  Administer the Service Management Facility  Perform system backups and restorations (SMF)  Configure the network interfaces  Manage Solaris file systems: UFS and ZFS  Configure and manage network services  Install the Solaris 10 Operating environment  Convert a UFS boot drive to ZFS; mirror the  Install software packages boot drive using ZFS  Understand best practices installing OS  Backup and recover the ZFS boot disk patches  Understand system logs and configuring  Create and administer user accounts syslog  Connect a client system to a NIS server  Troubleshooting hardware and OS errors  Understand file permissions  Troubleshoot boot problems  Mount remote NFS file systems

Topics

 Review of Essential Commands  Managing Software Patches on Solaris 10  System Startup and Shutdown Procedures –  Manage System Processes SPARC-Based Systems  Backup and Recovery  Service Management Facility (SMF)  Advanced Solaris 10 Installation Procedures  Managing Local Disk Devices  Solaris Live Upgrade  Manage File Systems  Managing SWAP Space  Introduction to the ZFS File System  Managing Crash Dumps and Core Files  ZFS for the Boot Disk  Configure the NFS Environment  The Solaris Network Environment  Solaris 10 Name Services  System Security  Configuring System Messaging  Administering User Accounts  Software Package Administration

Audience

This course is for those wanting to learn basic to intermediate topics in Solaris 10 system administration.

Prerequisites

It is assumed that the student has an understanding of UNIX/Linux. You must be familiar with basic UNIX commands, and the VI editor. The Solaris fundamentals course or an equivalent UNIX SVR4 or Linux fundamentals course is recommended.

Duration

Five days

Due to the nature of this material, this document refers to numerous hardware and software products by their trade names. References to other companies and their products are for informational purposes only, and all trademarks are the properties of their respective companies. It is not the intent of ProTech Professional Technical Services, Inc. to use any of these names generically

ProTech Professional Technical Services, Inc.

Oracle Solaris 10 System Administration 1

Course Outline

I. Review of Essential Commands B. Understand services and service A. Understand the Solaris 10 Directory instances Hierarchy C. Understand the SMF manifest B. VI editor 1. Creating the manifest C. Managing files D. Understand the SMF repository D. Understand Solaris 10 file types database 1. Understand hard links and soft links 1. Modify the service configuration 2. System Startup and Shutdown repository Procedures – SPARC-Based E. Understand the Fault Management Course Outline Course Systems Resource Identifier (FMRI) E. Basic network commands: sftp, scp F. Understand service dependencies F. List and kill active user processes G. Identify run level fundamentals 1. Describe SMF Milestones II. System Startup and Shutdown 2. Changing milestones Procedures – SPARC-Based Systems H. Compare run levels and SMF A. Understand phases of the boot process milestones – SPARC 1. Understand when to use a SMF B. Booting the system service vs. a legacy service C. The Advanced Lights Out Manager 2. Identify phases of the boot process (ALOM) and Integrated Lights Out I. SMF command line administration Manager (ILOM) utilities D. The Service Processor (SP) 1. Display information about services environment J. Starting and stopping services using 1. Accessing the SP environment SMF 2. Useful SP commands K. Starting services during boot 3. Accessing the system console and L. Troubleshooting SMF problems the OpenBoot environment M. Control boot processes and services E. Understanding OpenBoot and N. SMF message logging programmable read-only memory O. Creating new service scripts (PROM) 1. Convert a legacy service to a SMF 1. OpenBoot Firmware tasks managed service 2. PROM fundamentals P. Legacy services 3. PROM commands and syntax 1. Administering the SMF 4. Understand how to view and set 2. Troubleshooting SMF PROM parameters from (OpenBoot Q. Using run control scripts to stop / start and the shell) legacy services 5. Understand how to view and set 1. Adding scripts to the run control device aliases directories 6. OpenBoot security 7. OpenBoot diagnostics IV. Managing Local Disk Devices F. Boot PROM and program phases A. Describe device naming conventions G. Stopping the system for recovery 1. Physical device name purposes (Interrupting an unresponsive 2. Instance name system) 3. Logical device name H. Understand the pros and cons of the 4. Block and character device files various shutdown procedures B. Disk labels: EFI GPT vs SMI VTOC C. Display disk configuration information III. Service Management Facility (SMF) A. Describe features of the SMF and the D. Describe the format utility phases of the boot process E. Perform disk partitioning using the 1. The init process and the /etc/inittab format utility file 2. svc.startd daemon (master starter/restarter)

ProTech Professional Technical Services, Inc.

Oracle Solaris 10 System Administration 1

Course Outline (cont’d)

V. Manage File Systems 1. Native and settable properties A. File system types used in Solaris 10 2. Setting ZFs properties 1. Disk-based file systems: UFS and Q. Mounting ZFS file systems ZFS R. Legacy mount points 2. Network-based file systems S. Sharing ZFS file systems 3. Virtual file systems (SWAPFS, T. ZFS Web-based management GUI PROCFS, LOFS, CacheFS, DEVfs, U. ZFS snapshots TMPFS) 1. Creating snapshots Course Outline Course B. Hardware vs. software RAID 2. Listing snapshot information C. Identify and display information about 3. Saving and Restoring a ZFS file systems snapshot D. Creating a UFS file system 4. Renaming a ZFS snapshot E. File system operations 5. Rolling back a ZFS snapshot F. Synchronizing a file system 6. Save/Restore to a remote system G. Repairing file systems V. ZFS Clones H. Using fsck 1. Creating and destroying ZFS clones I. Mounting and unmounting file systems 2. Replacing a ZFS file system with a J. The /etc/vfstab file ZFS clone K. Displaying a file system’s disk space W. Zpool scrubbing usage X. Replacing Devices in a Storage Pool L. Displaying directory size information Y. Using ZFS with Solaris Zones 1. Adding a ZFS dataset to a non- VI. Introduction to the ZFS File System global zone A. Introduction to ZFS 2. Delegating a ZFS dataset to a non- 1. ZFS Terms global zone 2. Hardware and Software Z. Emulated volumes requirements for ZFS 1. Using ZFS as a swap or dump 3. What is Self-Healing? device B. ZFS RAID configurations AA. Designating hot spares in a storage pool C. Create a ZFS file system 1. Rename a ZFS file system VII. ZFS for the Boot Disk 2. Listing a ZFS file system A. ZFS on the boot drive (rpool) D. Remove a ZFS file system 1. Advantages of ZFS over UFS on E. Remove a ZFS Storage Pool the boot drive F. ZFS Components 2. Techniques to backup and restore 1. Disks, Files, Virtual Devices the rpool 2. Naming convention 3. Convert a UFS boot disk to ZFS G. Using disks in a ZFS storage pool B. Mirror the boot disk (rpool) H. Using files in a ZFS storage pool C. Migrate a UFS root disk to ZFS I. Mirrored storage pools D. Booting a ZFS root file system 1. Converting a non-redundant pool to E. ZFS related OpenBoot commands a mirrored pool F. Multiple ZFS boot environments with 2. Detach a device from a mirrored Live Upgrade pool G. Booting a ZFS file system in FailSafe 3. Split a mirrored storage pool mode J. RAID-Z storage pools H. Replacing a disk in a ZFS root pool K. Displaying ZFS storage pool information I. Boot From a Alternate Disk in a Mirrored L. Adding devices to a ZFS storage pool ZFS Root Pool M. Attaching and Detaching devices in a J. Root pool snapshots storage pool K. Recreate a ZFS Root Pool and Restore N. Taking storage pool devices offline and Root Pool Snapshots online L. Roll Back Root Pool Snapshots O. ZFS history P. ZFS properties

ProTech Professional Technical Services, Inc.

Oracle Solaris 10 System Administration 1

Course Outline (cont’d)

VIII. The Solaris Network Environment X. Administering User Accounts A. The Solaris Client/Server model A. Describe user administration B. Network interfaces Network Hardware fundamentals C. Configuring and Monitoring network B. Adding, modifying, and deleting a user interfaces account from the command line and D. Configuring static information SMC E. Configuring dhcp 1. Adding a group from the command F. Configuring the Network Interface line and SMC Course Outline Course G. /etc/hostname.interface 2. Setting up and customizing the H. /etc/nodename user’s shell I. /etc/defaultdomain C. Managing initialization files J. /etc/inet/hosts 1. The /home directory K. Configuring Network Services D. Authenticate using a Name service L. Enable and disable server processes (NIS) using the Service Management Service E. Connect an NIS client to a NIS server (SMF) M. Understanding inetd and the inetd.conf XI. Software Package Administration file in the SMF environment A. Describe fundamentals of package N. Starting services on well-known ports administration O. Using inetadm B. Tools for managing software from the P. Understand and monitor RPC services command line and from the system GUI Q. Network Security Files tools R. Understand how to configure the secure 1. Adding and removing software shell (ssh) packages S. Network Maintenance and 2. Listing and verifying installed Troubleshooting packages

IX. System Security XII. Managing Software Patches on Solaris 10 A. System hardening guidelines and A. The fundamentals of patch meeting DISA STIG requirements administration B. Controlling root access B. Installing / verifying / removing a patch C. User account information and patch clusters D. Restricted shells C. Introducing Sun Connection services E. Controlling file access 1. Using Sun connection services to 1. umask automate patching 2. Sticky bit 2. Using the update manager from the 3. Setting the correct PATH GUI and from the command line 4. setuid / setgid programs F. Auditing users XIII. Manage System Processes 1. Monitoring users and system usage A. Viewing system processes 2. Checking who’s logged in 1. Commands used to monitor system 3. The whodo command resources and processes 4. The last command 2. PROC tools G. Perform network hardening B. Process types H. Securing superuser access C. Using signals I. Automated security enhancement tool 1. The kill command (ASET) D. Scheduling processes J. Securing services 1. The fair share scheduler (FSS) K. Understand the Secure by Default 2. Scheduling and changing process configuration priorities 3. The nice and priocntl commands E. Clear frozen and “zombie” processes

ProTech Professional Technical Services, Inc.

Oracle Solaris 10 System Administration 1

Course Outline (cont’d)

F. Using the Solaris batch-processing X. Configure the WAN boot environment facility to schedule execution of and the WAN boot server commands Y. Booting the WAN boot client 1. Configuring crontab for executing Z. Using a Flash Archive for a WANboot recurring processes Installation 2. Using the at command for automatic one-time execution of a XVI. Solaris Live Upgrade command A. Understand the Solaris Live Upgrade Course Outline Course Process (when and where to use it) XIV. Backup and Recovery B. Understand the Live Upgrade A. Backup and recovery fundamentals requirements B. Solaris backup and restoration utilities C. Understand the Live Upgrade 1. Using the tar, dd, cpio, and pax commands utilites D. Create an alternate boot environment 2. Using ufsdump and ufsrestore cloned from a running system C. Recovering the root (/) and /usr file E. Create a new boot environment system F. Upgrade a boot environment D. Backing up a mounted file system G. Patch a boot environment E. Creating a UFS snapshot H. Modify a boot environment F. Backing up the snapshot file I. Activate a new boot environment on the G. Creating a Flash Archive SPARC and x86 platforms H. Recover using a Flash Archive J. Maintain the Solaris Live Upgrade boot environment XV. Advanced Solaris 10 Installation K. Manage multiple boot environments Procedures L. Advantages of using Live Upgrade on a A. Perform a Flash Installation ZFS root environment B. Describe a flash install M. OpenBoot commands and options when C. Create a flash archive using multiple boot environments D. Create a differential flash archive E. Manipulate a flash archive XVII. Managing SWAP Space F. Using a flash archive for cloning a A. Describe swap and virtual memory server concepts G. Using a flash archive for cloning a B. Swap space and TMPFS server disaster recovery C. Configure, size and monitor swap space H. Perform a JumpStart and PXE D. Setup swap space Installation E. Expand swap space I. Overview J. Preparing a Custom Jumpstart XVIII. Managing Crash Dumps and Core Files Installation A. Understand Core dumps K. Setting up the Server 1. Core dump configuration L. Setting up the Install Server 2. Manage core file behavior M. Setting up the Boot Server B. Understand Crash Dumps N. The rules File 1. Crash dump configuration O. Creating Profiles 2. Manage crash dump behavior P. Using a Flash Archive for a JumpStart Installation XIX. Configure the NFS Environment Q. Example Jumpstart Installation A. Servers and Clients R. Setup JumpStart to create a ZFS 1. NFSv4 mirrored root pool B. NFS Daemons S. Install the OS Using a Flash Archive C. NFS Security T. Create a Flash Archive 1. NFS logging U. Create a differential Flash Archive D. Mounting a Remote File System V. WAN Boot W. The WAN boot process

ProTech Professional Technical Services, Inc.

Oracle Solaris 10 System Administration 1

Course Outline (cont’d)

E. Troubleshooting NFS errors F. Describe the fundamentals of the AutoFS file system

XX. Solaris 10 Name Services A. Describe the Name Service concept and why it is used B. Structure of the NIS Network Course Outline Course 1. Server, slaves, and clients C. Planning your NIS Domain 1. Information to be Managed by NIS 2. Planning your NIS master server and slaves D. Configuring an NIS Master Server 1. Creating the source files 2. Preparing the Makefile 3. Creating custom NIS maps E. Setting Up the Master Server With ypinit F. Starting and Stopping NIS on the Master Server services G. Setting up NIS slave servers H. Setting up NIS clients I. The Name Service Switch 1. Templates 2. Name service sources 3. Name service status codes J. Local /etc files K. Troubleshooting NIS 1. Binding problems 2. Server problems L. DNS 1. Configuring a DNS client M. LDAP 1. Configure an LDAP client

XXI. Configuring System Messaging A. Describe the fundamentals of the syslog function B. Using “logger” C. Important system log files D. Configure syslog messaging E. Monitoring Users and System Usage F. Monitoring logins G. Setup a central syslog server