As part of an automated install of Oracle Solaris 11, a new role called "operator" is created and a password is correctly assigned, but you are not able to successfully assume this role. What is the problem?
Note:
* A user can only assume roles that are assigned to the user's login account.
* After you have set up roles with default Solaris rights profiles, and assigned the roles to users, the roles can be used. A role can be assumed on the command line. In the Solaris Management Console, a role can also be used for administering the system locally and over the network.
* How to Assume a Role in a Terminal Window
The role must already be assigned to you. The name service must be updated with that information.
1. In a terminal window, determine which roles you can assume.
2. % roles
Comma-separated list of role names is displayed
3. Use the su command to assume a role.
4. % su - rolename
5. Password: <Type rolename password>
$
The su - rolename command changes the shell to a profile shell for the role. A profile shell recognizes security attributes (authorizations, privileges, and set ID bits).
6. Verify that you are now in a role.
7. $ /usr/ucb/whoami
rolename
You can now perform role tasks in this terminal window.
Which three ZFS options may be combined to provide zones storage with data security and a minimal storage footprint?
A:
* Oracle Solaris 11 adds transparent data encryption functionality to ZFS. All data and file system metadata (such as ownership, access control lists, quota information, and so on) are encrypted when stored persistently in the ZFS pool.
* A very simple example of using ZFS encryption is as follows:
# zfs create -o encryption=on rpool/export/project
Enter passphrase for 'rpool/export/project':
Enter again:
# zfs create rpool/export/project/A
# zfs create rpool/export/project/A/design
# zfs create rpool/export/project/B
D: compression=on reduces storate footprint
E: If you want to allow the filesystem to be managed inside the zone, use the zfs zoned=on option when creating or modifying the filesystem.
A zone fails to boot, and zoneadm produces the following message:
Which two approaches might resolve the problem and enable the zone to boot?
C: When you assign a network to a global zone, you must define the mode of the network, either Shared IP or Exclusive IP:
In Shared IP mode, the network interface is used by more than one zone. You define the network interface when you you assign the global zone to the network.
In Exclusive IP mode, the network interface is dedicated to the zone. An exclusive network must be declared for the global zone when you assign network to the global zone. Then you configure the IP configuration for the non-global zone.
Not B: There is no command dladm disable to disable a network interface.
Not D: There is no command netconfig disable to disable a network interface.
What three items are true with regard to network planning in a Solaris 11 environment?
The following table lists different tasks for planning the network configuration.
* (A) Identify the hardware requirements of your planned network topology.
Determine the types of equipment that you need for your network site.
*(C) Determine the type of IP addresses to use and obtain registered IP addresses.
Select whether you are deploying a purely IPv4 network, an IPv6 network, or a network that uses both types of IP addresses. Obtain unique IP addresses to communicate to public networks in the Internet.
* (D) Determine a naming scheme to identify the hosts in the network as well as the name service to use.
Create a list of names to assign to the systems on the network and decide whether to use NIS, LDAP, DNS, or the network databases in the local /etc directory.
* If necessary, establish administrative subdivisions and design a strategy for subnets.
Decide if your site requires that you divide your network into subnets to service administrative subdivisions
* Determine where to place routers in the network design.
If your network is large enough to require routers, create a network topology that supports them.
* Decide whether to create virtual networks in the overall network configuration scheme.
You might need to create virtual networks within a system to reduce the hardware footprint of your network.
Which Oracle Solaris 1l milestone is equivalent to run level 2 on an Oracle Solaris 10 or earlier system?
Note:
* The services started by svc.startd are referred to as milestones. The milestone concept replaces the traditional run levels that were used in previous versions of Solaris. A milestone is a special type of service that represents a group of services. A milestone is made up of several SMF services. For example, the services that instituted run levels S, 2, and 3 in previous version of Solaris are now represented by milestone services named:
milestone/single-user (equivalent to run level S)
milestone/multi-user (equivalent to run level 2)
milestone/multi-user-server (equivalent to run level 3)
* Shut down the system.
# shutdown -iinit-state -ggrace-period -y
-iinit-state
Brings the system to an init state that is different from the default of S. The choices are 0, 1, 2, 5, and 6.
Run levels 0 and 5 are states reserved for shutting the system down. Run level 6 reboots the system. Run level 2 is available as a multiuser operating state.
