Hello,
I want to install Solaris 10 with a server JumpStart.
But i want only actived the ssh mod (for security).
How do you write that in the jumpstart script ?
What is the command line ?
Anybody can help me, please ?
Thank you :)
http://docs.sun.com/app/docs/doc/802-5740/6i9fqkuq6?a=view
I think you want to try using a finish script for this - jeff
I am ok with you, probably it's a simple line command in the finish script.
But i search on the net or in the Sun's documentation (http://docs.sun.com/app/docs/doc/817-5506/6mkv6ki4p?a=view) but i don't find any help.
Any description for resolve this problem.
Message was edited by:
Marcorel
ok - here's an example then -
from rules.ok
snip - -
hostname machinea - profiles/basic finish_scripts/finish
snip - -
and here's finish_scripts/finish
snip - -
# This finish script is a simple driver to run a series of finish
# scripts.
FIN_DIR=${SI_CONFIG_DIR}/finish_scripts
echo "
====================
Starting driver...
===================="
FIN_FILE=remote_root.fin
if [ -f "${FIN_DIR}/${FIN_FILE}" ] ; then
. ${FIN_DIR}/${FIN_FILE}
else
echo "
================================
File not found: ${FIN_FILE}
Remote root login not enabled.
================================"
fi
FIN_FILE=add_defaultrouter.fin
if [ -f "${FIN_DIR}/${FIN_FILE}" ] ; then
. ${FIN_DIR}/${FIN_FILE}
else
echo "
================================
File not found: ${FIN_FILE}
defaultrouter file not added.
================================"
fi
===================
Driver finished.
==================="
cp -p ${FIN_DIR}/inst_pkg.sh /a/opt/
cp -p ${FIN_DIR}/inst_patch.sh /a/opt/
cp -p ${FIN_DIR}/inst_patch.sh /a/etc/rc3.d/S99runonce_patchadd
echo 'rm /etc/rc3.d/S97runonce_mkdir /etc/rc3.d/S99runonce_patchadd /etc/rc3.d/S99zzz ' >> /a/etc/rc3.d/S99zzz
echo '/usr/sbin/sync ; /usr/sbin/sync; sleep 5 ; /usr/sbin/reboot ' >> /a/etc/rc3.d/S99zzz
snip - -
your finish scripts can contain either pointers to other scripts or actual commands -
hopefully this helps give you a head start
Thank you for this example, it's nice.
But, i don't have a problem for make a finish script.
My problem is that i don't know the line's command for active the ssh mod in the finish script.
When you install Solaris 10 with CDs, in first the installation's program tell you if you want active the ssh (for security). And with the JumpStart's install, i want to do the same thing.
I hope that my explication are rights because i am french and my vocabulary is limited :)
je pense que vous en parlez de "secure by default" - je vous demande excuser parce que ca fait tres longtemps depuis j'ai ecrit quelques phrases en francais ;)
try a look in docs.sun.com for "secure by default" and netservices limited
the resulting answers should help, if not, envoyez-moi un email a seul@alcatel-lucent.com - jeff
No problem !
I look that tomorrow and i tell you if i find a solution.
Thank you !
P.S. your french is good ..gratz :)
Cool !
I have make a research wih the term "security by default" and i have find the solution.
In the sysidcfg file, we must add the line :
service_profile=limited_net> only ssh open
service_profile=open> for open all port
Thank you for your help jeffrey.s !
null