D73488GC30_sg.pdf
408
0
0
Full text
(2) Author. Copyright © 2014, Oracle and/or its affiliates. All rights reserved.. Venu Poddar. Disclaimer. Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Technical Contributors and Reviewers Juanita Heieck Kathy Slattery Alta Estad Alissa Bader Clark Sharon Veach. This document contains proprietary information and is protected by copyright and other intellectual property laws. You may copy and print this document solely for your own use in an Oracle training course. The document may not be modified or altered in any way. Except where your use constitutes "fair use" under copyright law, you may not use, share, download, upload, copy, print, display, perform, reproduce, publish, license, post, transmit, or distribute this document in whole or in part without the express authorization of Oracle. The information contained in this document is subject to change without notice. If you find any problems in the document, please report them in writing to: Oracle University, 500 Oracle Parkway, Redwood Shores, California 94065 USA. This document is not warranted to be error-free.. Graphic Designer. Restricted Rights Notice. Maheshwari Krishnamurthy. If this documentation is delivered to the United States Government or anyone using the documentation on behalf of the United States Government, the following notice is applicable:. Editors Aju Kumar Anwesha Ray. a. U.S. GOVERNMENT RIGHTS The U.S. Government’s rights to use, modify, reproduce, release, perform, display, or disclose these training materials are restricted by the terms of the applicable Oracle license agreement and/or the applicable U.S. Government contract.. a s a h eฺ ) e Publishers tฺa Guid e n Sumesh Koshy sฺ ent e t Syed Ali ira Stud m Srividya Rameshkumar e his @ i v se t a q dฺ to u i h sha ense ( i lic av Q id h a Sh Raj Kumar. -tr n o n. e. bl a r e nsf. Trademark Notice. Oracle and Java are registered trademarks of Oracle and/or its affiliates. Other names may be trademarks of their respective owners..
(3) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Contents. 1. 2. Introduction Overview 1-2 Course Goals 1-3 Agenda 1-4 Introductions 1-6 Your Lab Environment 1-7 Practice 1 Overview: Course Introduction 1-8. Q d i ah. 3. Managing Software Packages in Oracle Solaris 11 Job Workflow 3-2 Objectives 3-3 Agenda 3-4 IPS: Overview 3-5 Planning for IPS 3-6 IPS Components 3-7. iii. a. -tr n o n. Introducing Oracle Solaris 11 New Features and Enhancements Job Workflow 2-2 Objectives 2-3 Agenda 2-4 Oracle Solaris 11 Operating System: Overview 2-5 Oracle Solaris 11: Features and Enhancements 2-6 Installation Methods 2-8 Software Management Features 2-9 Networking Features and Enhancements 2-10 Oracle Solaris Zones Enhancements 2-13 Storage and File System Enhancements 2-15 User Environment Feature Changes 2-16 Desktop Environment Enhancements 2-17 System Security Enhancements 2-18 Agenda 2-20 Key Features of Oracle Solaris 10 and Oracle Solaris 11: Comparison 2-21 Agenda 2-22 Transitioning Strategy 2-23 Summary 2-24. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q dฺ to u i h sha ense ( i lic av. Sh. e. bl a r e nsf.
(4) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Agenda 3-9 Local Package Repository 3-10 Creating a Local Repository 3-11 Enabling Users to Retrieve Packages Using an HTTP Interface 3-13 Configuring the IPS Clients 3-14 Updating the Local Master Repository Automatically 3-15 Practices 3-1 and 3-2: Overview 3-16 Agenda 3-17 Package Management: pkg (1) 3-18 pkg Command Examples: search 3-19 pkg Command Examples: info 3-20 pkg Command Examples: install 3-21 pkg Command Examples: list, verify, and contents 3-22 pkg Command Examples: uninstall 3-23 Package Manager 3-24 Managing Packages by Using a Web Browser 3-25 Update Manager 3-26 Agenda 3-27 Updating a System to Oracle Solaris 11.2 3-28 Determining Your Starting Point 3-29 Identifying the Repository in Use 3-30 Verifying the SRU Currently Installed 3-31 Updating a System Running Oracle Solaris 11 11/11 to Oracle Solaris 11.2 3-32 Updating a System Running Oracle Solaris 11 11/11 with an SRU to Oracle Solaris 11.2 3-34 Updating a System Running Oracle Solaris 11.1 with or without an SRU to Oracle Solaris 11.2 OS 3-35 Updating a System to Oracle Solaris 11.2 3-36 Practices 3-3 and 3-4: Overview 3-37 Agenda 3-38 Boot Environment (BE) 3-39 beadm Utility 3-40 beadm Command Examples: list 3-42 beadm Command Examples: create 3-43 beadm Command Examples: activate, rename, and destroy 3-44 beadm Command Examples: mount and unmount 3-45 Package Manager BE Features 3-46 Quiz 3-47 Summary 3-52 Practice 3-5: Overview 3-53. a. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q dฺ to u i h sha ense ( i lic av. Sh. Q d i ah. iv. -tr n o n. e. bl a r e nsf.
(5) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. 4. Installing the Oracle Solaris 11 Operating System Job Workflow 4-2 Objectives 4-3 Agenda 4-4 Oracle Solaris 11 Installation Methods 4-5 Oracle Solaris 11 System Requirements 4-6 Agenda 4-7 Oracle Solaris 11 Text Installer 4-8 Oracle Solaris 11 Text Installation: Disks 4-11 Oracle Solaris 11 Text Installation: Network 4-13 Oracle Solaris 11 Text Installation: Users 4-14 Oracle Solaris 11 Text Installation: Support 4-15 Oracle Solaris 11 Live Media 4-16 Oracle Solaris 11 Live Media: Device Driver Utility 4-17 Oracle Solaris 11 Live Media: Partition Editor 4-18 Oracle Solaris 11 Live Media Installer: Disk 4-19 Oracle Solaris 11 Live Media Installer: Time Zone 4-21 Oracle Solaris 11 Live Media Installer: Users 4-22 Oracle Solaris 11 Live Media Installer: Support 4-23 Practices 4-1 and 4-2: Overview 4-24 SMF-Based System and Network Configuration 4-25 Configuring an Oracle Solaris 11 Image 4-27 Agenda 4-29 Oracle Solaris 11 Automated Installation 4-30 How Automated Installation Works 4-31 AI Environmental Requirements 4-32 IPS Case: Using Default Manifest 4-34 IPS Case: Using Custom Manifest 4-36 IPS Case: Using a System Configuration Profile 4-38 IPS Case: Multiple AI Services 4-39 Configuring the AI Server 4-40 Setting Up the AI Server 4-41 Creating an Installation Service 4-42 AI Manifests 4-43 default.xml AI Manifest File 4-44 Criteria Manifest 4-46 Criteria Manifest: Examples 4-48 AI Manifest Wizard 4-49 System Configuration Profiles 4-50 System Configuration Profile: Example 4-51 AI Server Configuration Walkthrough 4-53. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q dฺ to u i h sha ense ( i lic av. Sh. Q d i ah. v. e. -tr n o n. a. bl a r e nsf.
(6) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Agenda 4-57 Comparing JumpStart with AI 4-58 Comparing Rules Keywords and Criteria Directives 4-59 Converting a JumpStart Profile to an AI Manifest 4-62 Agenda 4-65 Distribution Constructor 4-66 Distribution Constructor Manifest Files 4-67 Building an OS Image 4-68 Quiz 4-69 Summary 4-75 Practices 4-3, 4-4, 4-5 and 4-6: Overview 4-76 5. Oracle Solaris 11 Network Administration Enhancements Job Workflow 5-2 Objectives 5-3 Agenda 5-4 Introducing Oracle Solaris 11 Network 5-5 Oracle Solaris 10 Network Protocol Stack 5-6 Oracle Solaris 11 Network Protocol Stack 5-7 Network Configuration During Installation 5-8 Agenda 5-9 Oracle Solaris 11 Network Administration 5-10 Network Administration Commands 5-11 Comparing Network Administration Commands 5-12 Administering Datalinks 5-13 Configuring IP Interfaces and IP Addresses 5-14 Configuring Persistent Routes 5-15 Configuring Reactive Profiles 5-16 Practice 5-1: Overview 5-18 Practice 5-2: Overview 5-19 Agenda 5-20 Transitioning to Virtual Networking 5-21 Virtual Network Building Blocks 5-22 Building a Simple Virtual Network 5-23 Configuring a Private Virtual Network 5-24 Creating a Datalink in Non-Global Zone from the Global Zone Accessing a Virtual Network Configuration 5-26 Bandwidth Management 5-27 Managing Bandwidth 5-28 Practice 5-3: Overview 5-30 Agenda 5-31. e. a. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q dฺ to u i h sha ense ( i lic av. -tr n o n. Q d i ah. Sh. vi. bl a r e nsf. 5-25.
(7) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Elastic Virtual Switch (EVS): Overview 5-32 Elastic Virtual Switch: Example 5-33 Installing the Mandatory EVS Packages 5-34 Setting Up SSH Authentication 5-35 Configuring an EVS Controller 5-36 Configuring Elastic Virtual Switches 5-38 Creating VNICs for an Elastic Virtual Switch 5-39 Creating a VNIC anet Resource for an EVS 5-40 Practice 5-4: Overview 5-41 Agenda 5-42 Link Aggregation 5-43 Types of Link Aggregation 5-45 Creating a Trunk Aggregation 5-47 Creating a DLMP Aggregation 5-48 Configuring Probe-Based Failure Detection for DLMP Aggregation 5-49 Agenda 5-50 IP Network Multipathing 5-51 IPMP Components 5-52 IPMP Configurations 5-53 Configuring IPMP: Active-Active 5-54 Configuring IPMP: Active-Standby 5-55 Failure Detection in IPMP 5-56 Monitoring IPMP 5-57 Practice 5-5: Overview 5-59 Agenda 5-60 Network Bridging 5-61 Configuring a Network Bridge 5-63 Practices 5-6 and 5-7: Overview 5-64 Agenda 5-65 Integrated Load Balancer (ILB) 5-66 ILB Operation Modes 5-68 ILB Operation Modes: DSR 5-69 ILB Operation Modes: NAT 5-70 Enabling and Disabling ILB 5-71 Configuring ILB 5-72 Agenda 5-73 dlstat Command 5-74 dlstat: Examples 5-75 flowstat Command 5-77 flowstat: Examples 5-78 Agenda 5-79. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q dฺ to u i h sha ense ( i lic av. Sh. Q d i ah. vii. e. -tr n o n. a. bl a r e nsf.
(8) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Viewing IP Traffic Statistics 5-80 Viewing TCP and UDP Traffic Statistics 5-81 Viewing User and Process Information 5-82 Analyzing Network Traffic 5-83 wireshark Utility 5-84 Performing Network Diagnostics 5-85 Managing the network-monitor Module 5-86 Retrieving Reports That Are Generated by the network-monitor Module 5-87 Viewing Statistics of the network-monitor Fault Management Module 5-88 Quiz 5-89 Summary 5-99 Practice 5-8: Overview 5-100 6. Sh. Q d i ah. viii. a. -tr n o n. Administering Oracle Solaris 11 Zones Job Workflow 6-2 Objectives 6-3 Agenda 6-4 Oracle Solaris 11 Zones 6-5 Zones: New Features 6-6 Agenda 6-9 Oracle Solaris 10 Zones 6-10 Migrating Oracle Solaris 10 Zones (V2V) 6-12 Migrating Oracle Solaris 10 Global Zones (P2V) 6-14 Agenda 6-16 Configuring Nonglobal Zones by Using the Automated Installer (AI) 6-17 Specifying a Nonglobal Zone in the AI Manifest 6-18 Nonglobal Zone Configuration Files 6-19 Adding a Nonglobal Zone Manifest and Profile 6-20 Agenda 6-21 Oracle Solaris Zone Brands 6-22 Overview of Kernel Zones 6-23 System Requirements for Using Oracle Solaris Kernel Zones 6-24 Configuring Kernel Zones 6-26 Agenda 6-29 Installing a Kernel Zone 6-30 Booting a Kernel Zone 6-32 Cloning by Using zoneadm clone 6-33 Suspending and Resuming a Kernel Zone 6-34 Migrating a Kernel Zone 6-35 Agenda 6-37 Monitoring Zone Resource Consumption 6-38. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q dฺ to u i h sha ense ( i lic av. e. bl a r e nsf.
(9) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Monitoring Zone Memory Consumption 6-39 Monitoring Zone CPU Consumption 6-40 Monitor Total and High Zone Resource Consumption 6-41 Monitoring File System Statistics 6-42 Quiz 6-43 Summary 6-45 Practice 6: Overview 6-46 7. Oracle Solaris 11 ZFS Enhancements Job Workflow 7-2 Objectives 7-3 Agenda 7-4 Introducing Oracle Solaris 11 ZFS Enhancements 7-5 Agenda 7-7 ZFS Shadow Data Migration 7-8 Shadow Migration Considerations 7-9 Configuring ZFS Shadow Data Migration 7-11 Agenda 7-12 Splitting a Mirrored ZFS Storage Pool 7-13 Splitting a ZFS Mirrored Pool: Example 7-14 Agenda 7-15 Identifying ZFS Snapshot Differences 7-16 Identifying ZFS Snapshot Differences: Example 7-17 Using Time Slider 7-18 Enabling and Disabling Time Slider 7-19 Agenda 7-20 ZFS Deduplication 7-21 ZFS Deduplication Properties 7-23 ZFS Deduplication: Example 7-24 Agenda 7-25 Common Multiprotocol SCSI Target (COMSTAR) 7-26 COMSTAR: Benefits and Limitations 7-28 Configuring COMSTAR 7-29 Quiz 7-31 Summary 7-38 Practice 7 Overview: Oracle Solaris 11 ZFS Enhancements 7-39. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q dฺ to u i h sha ense ( i lic av. Q d i ah. Sh. 8. Oracle Solaris 11 Security Enhancements Job Workflow 8-2 Objectives 8-3 Agenda 8-4. ix. e. -tr n o n. a. bl a r e nsf.
(10) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Oracle Solaris 11 Security Enhancements 8-5 Agenda 8-9 Oracle Solaris Cryptographic Framework 8-10 Administrative Command: Examples 8-12 User Command: Examples 8-15 Agenda 8-17 Increasing Security for Automated Installations 8-18 Configuring Security for Automated Installations 8-19 Configuring Kerberos Clients Using AI 8-21 Agenda 8-23 ZFS DataSet Encryption 8-24 ZFS Pool Encryption: Example 8-25 ZFS File System Encryption: Example 8-26 Agenda 8-27 Read-Only (Immutable) Zones 8-28 file-mac-profile Property 8-29 Administering Read-Only Zones 8-30 Read-Only (Immutable) Global Zone 8-32 Agenda 8-33 BART 8-34 BART: Example 8-35 Agenda 8-37 Auditing in Oracle Solaris 8-38 Displaying Audit Service Defaults 8-41 Enabling and Disabling the Audit Service 8-42 Viewing Contents of Binary Audit Files 8-43 Quiz 8-44 Summary 8-48 Practice 8 Overview: Oracle Solaris 11 Security Enhancements 8-49. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q dฺ to u i h sha ense ( i lic av. Sh. Q d i ah. x. e. -tr n o n. a. bl a r e nsf.
(11) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. I t d ti Introduction. e. a. bl a r e nsf. Sh. Q d i ah. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic av. -tr n o n.
(12) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Overview • • • • •. Course goals Agenda Practices Introductions Your learning center. e. bl a r e nsf. a. -tr n o n. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic to Oracle Solaris 11 course. This is an advanced course that builds atovthe Transition Welcome Q d Solaris 10 system administration courses. It is focused on the skills and knowledge iOracle on h a for transitioning from the Oracle Solaris 10 operating environment to the Oracle Sh required Solaris 11 operating environment. This course highlights the new features in Oracle Solaris 11, including the Automated Installer (AI), the Image Packaging System (IPS), and network virtualization. Throughout the course, you learn how to transition to the Oracle Solaris 11 operating environment by performing a series of guided hands-on practices that walk you through the critical tasks associated with operating system migration activities. These practices include case studies that illustrate the best practices when transitioning from Oracle Solaris 10 to Oracle Solaris 11. This course does not address the system administration tasks that are currently supported in Oracle Solaris 10 (or other) operating systems. Rather, it focuses on the new and enhanced features found in the Oracle Solaris 11 operating system. It is assumed that you already have the skills and knowledge that are necessary for administering the Oracle Solaris 10 operating system.. Transition to Oracle Solaris 11 1 - 2.
(13) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Course Goals The goals of this course are to: • Familiarize you with the Oracle Solaris 11 new features and enhancements: – – – – –. Image Packaging System (IPS) Automated Installer (AI) Network virtualization Oracle Solaris Zones Security. tra n Provide you with the skills necessary for a successful no a transition from Oracle Solaris 10 to Oracle 11 asSolaris h ฺ ) ฺae uide t e ฺn nt G s e at tude r i em his S @ vi se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic av. •. Transitioning to a new operating system can be a very daunting task. It involves working with a wide range of complex technologies and procedures, many of which are new to the personnel participating in the project.. Sh. Q d i ah. Transition to Oracle Solaris 11 1 - 3. e. bl a r e nsf.
(14) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Agenda •. Day 1 – Lesson 1: Introduction – Lesson 2: Introducing Oracle Solaris 11 New Features and Enhancements – Lesson 3: Managing Software Packages in Oracle Solaris 11. •. •. Day 2. le. – Lesson 3: Managing Software Packages in Oracle Solaris 11 rab fe s – Lesson 4: Installing the Oracle Solaris 11 Operating System n a. tr. Day 3. a. non. – Lesson 5: Oracle Solaris 11 Network Enhancements as ฺ h ) – Lesson 6: Administering Oracle Solaris de tฺae 11 iZones. e t Gu n ฺ s n e e t d a mir is Stu e i@ e th v a ฺq ©o2014, usOracle and/or its affiliates. All rights reserved. dCopyright i t h sha ense ( i lic Solaris 11 course consists of five days of lectures and practice av to Oracle The Transition Q id This course also covers the latest Oracle Solaris 11.2 features and enhancements. activities. h a esso 2 p provides o des a b brief e o overview e e o of a all tthe e key ey features eatu es a and de enhancements a ce e ts o of O Oracle ac e Sh • Lesson • • • •. • •. Solaris 11 OS that are discussed in this course. Lesson 3 explains how to work with IPS, its main features, and components; and also how to manage software packages using IPS. Lesson 4 explains how to install Oracle Solaris 11 OS using the text installer, Live CD, and Automated Installer. Lesson 5 briefly lists and explains the network enhancements of Oracle Solaris 11 OS. Lesson 6 explains how Oracle Solaris 11 Zones are different from Oracle Solaris 10 Zones. It also explains how to migrate Oracle Solaris 10 Zones to Oracle Solaris 11 Zones. Lesson 7 briefly lists and explains the ZFS enhancements of Oracle Solaris 11 OS. Lesson 8 briefly lists and explains the security enhancements of Oracle Solaris 11 OS.. Transition to Oracle Solaris 11 1 - 4.
(15) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Agenda •. Day 4 – Lesson 6: Administering Oracle Solaris 11 Zones. •. Day 5 – Lesson 7: Oracle Solaris 11 ZFS Enhancements – Lesson 8: Oracle Solaris 11 Security Enhancements. e. a. bl a r e nsf. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic av. Q d i ah. Sh. Transition to Oracle Solaris 11 1 - 5. -tr n o n.
(16) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Introductions • • • • • •. Name Company affiliation Title, function, and job responsibility Experience related to topics in this course Reasons for enrolling in this course Expectations from this course. e. a. bl a r e nsf. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic av. Q d i ah. Sh. Transition to Oracle Solaris 11 1 - 6. -tr n o n.
(17) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Your Lab Environment. e. bl a r e nsf. a. -tr n o n. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i avVirtualBoxlicis a cross-platform virtualization application. It extends the capabilities OracleQ VM id existing computer so that you can run multiple operating systems inside multiple of your h a Sh virtual machines at the same time.. As part of each lesson, you will be given the opportunity to practice in a lab environment. The lab environment used in this course is based on the Oracle VM VirtualBox virtualization software, the interface of which is shown in the slide.. Transition to Oracle Solaris 11 1 - 7.
(18) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Practice 1 Overview: Course Introduction This practice covers how to familiarize yourself with the lab environment.. e. bl a r e nsf. a. -tr n o n. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic to the practices for Lesson 1. Your instructor will walk you through avActivity Guide Open your Q idmaterial, and you will have a chance to familiarize yourself with the lab environment the h a Sh configuration and setup.. Transition to Oracle Solaris 11 1 - 8.
(19) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. IIntroducing t d i Oracle O l Solaris S l i 11 New Features and Enhancements. e. a. bl a r e nsf. Sh. Q d i ah. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic av. -tr n o n.
(20) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Job Workflow. Introducing New Features and Enhancements M Managing i Software S ft Packages. Installing. e. bl a r e nsf. Network Administration Enhancements. Administering Zones. a. -tr n o n. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic Solaris 11 course presents each of the system administration tasks av to Oracle The Transition Q id context of a workflow. Before you begin a lesson, take a look at the job workflow in the in the h a Sh slide diagram at the beginning of each lesson. ZFS Enhancements. Security Enhancements. As indicated in the workflow, you start with an introduction to the new features and enhancements in the Oracle Solaris 11 OS.. Transition to Oracle Solaris 11 2 - 2.
(21) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Objectives After completing this lesson, you should be able to: • Describe the Oracle Solaris 11 operating system • Describe the Oracle Solaris 11 features and enhancements • Compare the features of Oracle Solaris 10 and Oracle Solaris 11 le b a • Describe a strategy for transitioning from Oracle Solaris 10fer s n to Oracle Solaris 11 a tr. onn a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i licyou to the new features and enhancements in the Oracle Solaris 11 avintroduces This lesson Q id system. The lesson begins with a description of Oracle Solaris 11 and continues operating h a Sh with a high-level description of each new feature and enhancement.. It also provides a comparison of the features in Oracle Solaris 10 with those of Oracle Solaris 11. This is followed by a description of a strategy for transitioning from Oracle Solaris 10 to Oracle Solaris 11.. Transition to Oracle Solaris 11 2 - 3.
(22) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Agenda • • •. Oracle Solaris 11 new features and enhancements Features comparison Strategy for transitioning to Oracle Solaris 11. e. a. bl a r e nsf. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic av. Q d i ah. Sh. Transition to Oracle Solaris 11 2 - 4. -tr n o n.
(23) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Oracle Solaris 11 Operating System: Overview Oracle Solaris 11: • Builds on the proven technologies of Oracle Solaris 10 • Provides access to the latest Oracle Solaris 11 technology • Has been tested and optimized for Oracle hardware and software • Offers state-of-the-art reliability, availability, and le b a serviceability er f s an r • Is an integrated component of Oracle’s Exadata and t on E l i systems Exalogic t n a. as ฺ h ) ฺae uide t e ฺn nt G s e at tude r i em his S @ vi se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i c av is theliindustry-leading OracleQ Solaris operating system for the enterprise. Oracle Solaris 11 d raises hi the bar for the innovation introduced in Oracle Solaris 10 with a unique set of features athat h few other operating systems can offer. Oracle Solaris 11 has been tested and optimized S for Oracle hardware and software and is an integral part of Oracle’s combined hardware and software portfolio.. Oracle Solaris 11 provides customers with access to the latest Oracle Solaris technology, allowing developers, architects, and administrators to test and deploy applications within large data centers, which greatly simplify their day-to-day operations. Oracle Solaris 11 is characterized by the reliability, availability, and serviceability that you expect from a leading enterprise operating system. system Oracle Solaris 11 provides new optimizations and features designed to deliver proven scalability and reliability as an integrated component of Oracle’s Exadata and Exalogic systems.. Transition to Oracle Solaris 11 2 - 5.
(24) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Oracle Solaris 11: Features and Enhancements • • • • • • • • •. Installation methods Software management features Networking features and enhancements Oracle Solaris Zones enhancements Storage and file system features User account management features Desktop environment enhancements System y configuration g features Security features. e. bl a r e nsf. a. -tr n o n. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i av 11: lic OracleQ Solaris d •i Introduces a new, modern software installation architecture, offering several installation h a cchoices. o ces This s includes c udes a co completely p ete y hands-free a ds ee auto automated ated network et o installation sta at o Sh • •. •. experience, a graphical Live Media installer (x86 only), and an interactive text-based installation for systems without a graphical display. Introduces Image Packaging System (IPS) as the next-generation packaging system that provides safe system updates and upgrades Provides significant enhancements to networking, including several new network virtualization features for high availability, improved performance, and resource management. t The Th key k building b ildi bl blocks k off network t k virtualization i t li ti are VNIC VNICs, virtual it l switching, aggregations, bridging, virtual local area networks (VLANs), and Elastic Virtual Switch (EVS). Enhances its virtualization solution with Oracle Solaris 10 Zones (also known as solaris10 branded zones). Oracle Solaris 10 Zones provide a seamless method for migrating to Oracle Solaris 11. Additional features such as delegated zone g and installation of administration, boot environment ((BE)) for zones, configuration nonglobal zones as part of an AI client installation, and enhanced zone monitoring are also included.. Transition to Oracle Solaris 11 2 - 6.
(25) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. •. • •. •. •. Expands support for Oracle Solaris 10 storage technologies. The ZFS file system includes several enhancements, including ZFS as the root file system, encryption, deduplication, shadow migration, and ZFS snapshot differences. Additional enhancements include the Common Multiprotocol SCSI Target (COMSTAR) technology and Common Internet File System (CIFS) support for seamless file sharing with Windows environments. Introduces the User Manager GUI for creating and managing users apart from providing the usual command-line interface Includes GNOME 2.30, an intuitive, easy-to-use desktop environment, and the Firefox web browser, among a variety of other software included in the network package repository GNU (not UNIX) commands and a default bash shell environment are also repository. available. Provides significant changes to system configuration features and tools apart from introducing the Oracle Solaris Unified Archives feature for system recovery and cloning and the Common UNIX Printing System (CUPS) feature as a printing solution Continues to optimize security controls. This release supplies several security-related enhancements: root as a role, encrypted ZFS datasets, Trusted Platform Module (TPM) support, and enhancements to Oracle Solaris Trusted Extensions.. a. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q dฺ to u i h sha ense ( i lic av. Q d i ah. Sh. Transition to Oracle Solaris 11 2 - 7. -tr n o n. e. bl a r e nsf.
(26) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Installation Methods •. Unattended installation – Oracle Solaris 11 Automated Installer (AI) —. — — —. •. Network installation: Uses software package repository or an Oracle Solaris Unified Archive AI Services: Refer to client architecture and OS to be installed AI manifests: Provide client installation instructions AI profiles: Provide system configuration information. Interactive installation. – Oracle Solaris 11 Live Media installation (x86 only)n-tra. o. n a as ฺ h ) ฺae uide – Interactive text installer t e ฺn nt G s Suited for server deployments e at tude r i Text-based interface em his S @ vi se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic av — —. Suited for desktops and notebooks GUI interface. — —. Oracle Solaris 11 offers several installation options: • Unattended installation: An improved, hands-free, automated installation of networked systems. syste s This s process p ocess replaces ep aces tthe eO Oracle ac e So Solaris a s Ju JumpStart pSta t functionality u ct o a ty a available a ab e in Oracle Solaris 10 and earlier releases. • Interactive installation: Interactive installation by using a text-based user interface (because most servers use a text-based console for installation), and interactive installation for x86 desktop and notebook systems by using the Oracle Solaris 11 Live Media for x86. Q d i ah. Sh. Oracle Solaris 11 does not support the following installation features: • Oracle Solaris Flash Archive installation: Instead, use the Oracle Solaris Unified Archive feature to perform cloning and recovery operations. • Oracle Solaris JumpStart feature: Instead, use the AI feature. • Oracle Solaris Live Upgrade feature: Instead, use the beadm utility. Note: You can use the js2ai utility to convert Oracle Solaris 10 JumpStart rules, profiles, and system identification files to AI criteria files, AI manifests, and AI configuration files, respectively.. Transition to Oracle Solaris 11 2 - 8. e. bl a r e nsf.
(27) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Software Management Features •. Use IPS to perform software management tasks, such as: – – – –. •. Software installation Software updates Operating system upgrades Removal of software packages. Software management components include:. le. – IPS command-line utilities, such as pkg install, pkg rab e f update, pkg list, and pkg uninstall ans. -tr. – IPS repositories as storage location for softwarenpackages on. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic av 11 introduces OracleQ Solaris the Image Packaging System (IPS) feature, which is a d redesigned software packaging model. IPS is a comprehensive delivery hi acompletely h framework that spans the complete software life cycle, addressing software installation, S updates, operating system upgrades, and the removal of software packages. In contrast to the SVR4 packaging model used in earlier Oracle Solaris releases, IPS eliminates the need for patching. Relying on the use of network repositories of software packages, IPS dramatically changes how an administrator updates system and application software. IPS packages can be installed into nonglobal zones in addition to the global zone. Note: There is no upgrade path from Oracle Solaris 10 to Oracle Solaris 11. You must perform f a fresh f h installation. i t ll ti. Transition to Oracle Solaris 11 2 - 9.
(28) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Networking Features and Enhancements • • • • • • • • •. Generic datalink names Network administration command changes Naming and directory services configuration Network virtualization features Enhanced IPMP feature Performance and efficiency enhancements Resource management enhancements Network security y enhancements a Network observability enhancements as. e. bl a r e nsf. a. -tr n o n. h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic generic names to each datalink on a system by using the net0, av 11 supports OracleQ Solaris id netN naming convention. net1, h a Sh Oracle Solaris 11 introduces the following three commands to manage persistent network. configuration: • ipadm: Creates persistent configuration of interfaces, addresses, and TCP/IP properties. This command replaces the ifconfig command of Oracle Solaris 10. • dladm: Manages datalink configuration. This command replaces the ndd command and the drive.conf file of Oracle Solaris 10 for configuration of certain network parameters. • route: Configures persistent routes. This command replaces the use of the /etc/defaultrouter file in Oracle Solaris 10 to manage a system route configuration.. Oracle Solaris 11 uses Service Management Facility (SMF) to manage the naming and directory services configuration. In Oracle Solaris 10, you edited the various files in the /etc directory to configure the naming and directory services.. Transition to Oracle Solaris 11 2 - 10.
(29) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Oracle Solaris 11 provides several network virtualization features that you can use for high availability, managing network resources, and improving overall network performance. Some of the key network virtualization features include: • VNICs: Refers to a p pseudo network interface that is configured g on top p of a p physical y network interface of a system. Each VNIC has its own MAC address that you can configure with additional attributes, thus enabling the VNIC to be easily integrated into an existing network infrastructure. • Aggregation: Refers to an L2 entity that ensures continuous access of a system to the network. Link aggregations increase the availability and reliability of network connectivity by pooling multiple datalink resources that you administer as a single unit. - Datalink multipathing (DLMP): Refers to a type of probe probe-based based link aggregation that detects the loss of connectivity between DLMP-aggregated links and configured targets. This type of failure detection addresses the limitations of the link-based failure detection mechanism, which can detect only failures caused by the loss of direct connection between the datalink and the first-hop switch. - Trunk aggregation: Refers to a type of a link aggregation mode that is based on the IEEE 802.3ad standard and works by enabling multiple flows of traffic to be spread across a set of aggregated ports. • Bridging: Refers to an L2 technology that connects multiple datalinks on a network into a single network. Ethernet bridging is supported in Oracle Solaris 11 with the addition of the Spanning Tree and Transparent Interconnect of Lots of Links (TRILL) protocols. • Virtual switching: Refers to the built-in virtual switching capabilities of Oracle Solaris 11 that simulates a network physical switch. On a single system, you can use virtual switches to enable zones and virtual machines to communicate with each other other. • EVS feature: Refers to an L2 technology that enables direct management of virtual switches. You can create EVS switches to deploy multiple virtual networks that span multiple hosts, within either a multi-tenant cloud environment or a datacenter. • Virtual eXtensible Local Area Network (VXLAN): Refers to an L2 and L3 technology that works by overlaying a datalink network on top of an IP network. The VXLAN feature addresses the 4K limitation of VLAN configuration. Typically, VXLANs are used in a cloud infrastructure to isolate multiple virtual networks. You can manage VXLANs by using the EVS feature. • Edge Virtual Bridging (EVB): Refers to an L2 technology that enables Oracle Solaris 11 systems to exchange virtual link information with an external switch. EVB offloads the enforcement of traffic service-level agreements (SLAs) to the switch. • Layer 3 Virtual Router Redundancy Protocol (VRRP): Refers to the proprietary L3 feature that provides high availability of IP addresses, addresses such as those that are used for routers and load balancers. L3 VRRP removes the need to configure unique VRRP virtual MAC addresses for VRRP routers, thereby providing better support for VRRP over IPMP and InfiniBand interfaces, and in zones.. a. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q dฺ to u i h sha ense ( i lic av. Sh. Q d i ah. Transition to Oracle Solaris 11 2 - 11. -tr n o n. e. bl a r e nsf.
(30) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. In Oracle Solaris 11, IP network multipathing (IPMP) has been redesigned to enhance the administrative model and improve monitoring. IP interfaces are grouped into a virtual IP interface, such as, ipmp0. This virtual IP interface serves all of the data IP addresses, while test addresses that are used for probe-based failure detection are assigned to an underlying i interface, f such h as net0. The Th new ipmpstat utility ili provides id visibility i ibili to the h IPMP subsystem. b Oracle Solaris 11 provides performance and efficiency features through the following features: • DCB: Refers to the L2 technology that you can use to manage the bandwidth, relative priority, and flow control of multiple traffic types that share the same network link (for example, when sharing a datalink between networking and storage protocols) • ILB: Refers to the L3 and L4 technology that enables a system to spread the load of network t k processing i amongstt available il bl resources. ILB can b be used d tto iimprove reliability li bilit and scalability, and to minimize the response time of network services. Load balancing involves using multiple systems to deal with high demands of a network by balancing the load between multiple systems.. e. bl a r Oracle Solaris 11 provides resource management capabilities through the following features: fe s n • Flows: Refers to a subset of data packets that are identified by common attributes. tra protocol n These attributes consist of packet header information information, such as IP addresses addresses, noas well as assign type, and transport port numbers. You can observe flows individually, a as ฺ You administer flows flows their own SLAs (for example, bandwidth control and priority). h ) at the L2, L3, and L4 layers of the Oracle Solaris network ide stack. ฺae protocol t u e G in a local area network • LLDP: Refers to the L2 technology that is used ฺn by systems t s n e t udeinformation with each other. LLDP (LAN) to exchange configuration and a management r i t management information to other enables a system to advertise connectivity and m is S e systems on the network network. i@ th v e a ฺqthe network Oracle Solaris 11 improves us sockets implementation by no longer using the d i o t h STREAMS module.aThis enhancement results in performance improvements and also e h s s n ( provides a new, simplified developer interface for adding new socket types. The new network licemonitors network traffic volume, allowing it to shift from interrupt avi socketQ architecture also id to polling mode, which is much more efficient when dealing with high network traffic driven h a Sh volumes. Oracle Solaris 11 provides the following commands to observe network traffic: • tcpstat: Enables you to observe network traffic at the transport layer, specifically for TCP and UDP • ipstat: Enables you to observe network traffic at the IP layer, aggregated on source, destination, higher-layer protocol, and interface. Additionally, y, Oracle Solaris 11 supports pp the use of Wireshark GUI to troubleshoot networking g issues and to perform package analysis. The Wireshark utility and its command-line equivalent, TShark, enables you to capture packet data from a live network or read packets from a previously saved capture file.. Transition to Oracle Solaris 11 2 - 12.
(31) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Oracle Solaris Zones Enhancements • • • • • • •. Oracle Solaris 10 branded zones Oracle Solaris kernel zones Whole root zones only Zone resource monitoring Delegated administration Zones on shared storage NFS server in nonglobal zones. e. bl a r e nsf. a. -tr n o n. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic significant enhancements to zone administration and monitoring, av 11 includes OracleQ Solaris id help administrators manage consolidated and virtualized workloads more efficiently. which h a Sh For users running applications either in zones or on bare metal on Oracle Solaris 10 systems,. virtual-to-virtual (v2v) and physical-to-virtual (P2V) tools are provided to help the transition to an Oracle Solaris 10 zone running in Oracle Solaris 11. An Oracle Solaris 10 zone can have a shared IP stack with the global zone or an exclusive IP stack. Oracle Solaris 10 Zones provide a proven and fully supported option for quick adoption of Oracle Solaris 11, which allows administrators to benefit immediately from all the new features available while providing an easy application migration path. Oracle O l S Solaris l i 11 11.2 2 supports t a ffully ll iindependent d d t and d iisolated l t d environment i t called ll d O Oracle l Solaris Kernel Zones (also known as solaris-kz branded zone). Kernel zones use an independent kernel and user environment within the zone. Each kernel zone can run at a different kernel version from the global zone and can be updated separately without requiring a reboot of the global zone. Note: The following legacy branded zone features are supported only in Oracle Solaris 10: • Linux u b brand a d ((lx)) • Oracle Solaris 8 Containers (solaris8) • Oracle Solaris 9 Containers (solaris9) Transition to Oracle Solaris 11 2 - 13.
(32) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Another enhancement to zone technology is that the distinction in Oracle Solaris 10 between whole root and sparse root is irrelevant. In Oracle Solaris 10, sparse root zones conserve disk space and permit fast zone creation by sharing a single instance of key file systems among multiple zones. In Oracle Solaris 11, the root file system is ZFS and zone creation leverages ZFS clones for similar space and time savings. When a new boot environment is created by cloning an existing one, the base boot environment’s zones are also cloned into the new boot environment. As a result, you no longer have to choose between different zone types. Oracle Solaris 11 greatly enhances your ability to monitor zone resource consumption with the introduction of the zonestat command. With zonestat, you can observe memory and CPU utilization, utilization of resource control limits, total utilization, and per-zone utilization breakdowns over specified time periods. In Oracle Solaris 11, you can delegate specific zone administration tasks to different administrators using Role-Based Access Control (RBAC). With delegated administration standard, users are identified with the permissions to log in, manage, or clone that zone.. le b a In Oracle Solaris 11.1 release, you can configure, install, and run Oracle Solaris Zones e hosted r f s directly on arbitrary storage device objects such as Fibre Channel and iSCSI targets. Another n anew r t enhancement of this release is the support for NFS servers in nonglobal zones. A otonindicate that the unavailable zone state has been added in Oracle Solaris 11.1 release n aattached, or moved. s zone has been installed, but cannot be verified, made ready, booted, a ) h deฺchanges, such as Starting from Oracle Solaris 11.2 release, you can makea configuration e i zone without the need to tinฺ a running u e changing network configuration and resource controls, G n ฺ t had to reboot a zone for a sadministrators n reboot. In the earlier releases of Oracle Solaris, e e t ud ira Reconfiguration configuration change to take effect. Live Zone eliminates down time in t m S e s service availability within the zone changes are made made. @wheneconfiguration hi i t v ฺqa o us d i t h a e h s (s icen i v l a Q d ahi. Sh. Transition to Oracle Solaris 11 2 - 14.
(33) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Storage and File System Enhancements •. ZFS enhancements – Default file system – Deduplication – ZFS snapshot differences (zfs diff) – ZFS shadow migration. • •. COMSTAR CIFS support. e. bl a r e nsf. a. -tr n o n. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i licfile system in Oracle Solaris 11. UFS is still available for nonroot file avdefault root ZFS isQ the id Oracle Solaris 11 has added ZFS deduplication, which detects and removes systems. h a data from ZFS file systems. If a ZFS file system has the dedup property enabled, Sh redundant duplicate data blocks are removed synchronously. As a result, the file system stores only unique data. Support for listing the differences between ZFS snapshots (zfs diff) has been added with Oracle Solaris 11. Also, now you can use the shadow migration feature to migrate data from an old file system to a new one while simultaneously allowing access and modification of the new file system during the migration process. The Common Multiprotocol SCSI Target (COMSTAR) technology, introduced in Oracle Solaris 11, 11 enables network file sharing, sharing similar to NFS and CIFS, CIFS but for raw block-device block device access via iSCSI or SAN. This technology enables any Oracle Solaris 11 host to become a SCSI target, allowing it to be accessed over a storage network by a variety of initiator hosts. COMSTAR supplies a software framework that makes it possible for all SCSI device types to connect to a transport protocol and provide network device access. In this way, virtual machines can share image files or access to a database. Oracle Solaris 11 provides in-kernel CIFS support for seamless file sharing with Windows environments. i t The Th CIFS service i also l includes i l d new features, f t such h as host-based h tb d access control (which allows a CIFS server to restrict access to specific clients according to IP addresses), access control lists (ACLs) on shares, and client-side caching of offline files with synchronization on reconnect. Transition to Oracle Solaris 11 2 - 15.
(34) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. User Environment Feature Changes • • • •. Administrative command locations Default user shell and path changes Development tools locations Creating and managing user accounts. e. bl a r e nsf. a. -tr n o n. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i c administrative commands are located in the /usr/sbin directory v 11,lithe aSolaris In Oracle Q id compared to /sbin in the previous release. In addition, the /sbin directory has been when h a Sh replaced by an /sbin →/usr/sbin symbolic link.. In Oracle Solaris 10, the default scripting shell (/bin/sh) is the Bourne shell. Starting with Oracle Solaris 11, the bash shell is the default interactive shell, and ksh93 replaces ksh as the default system shell.. There are other changes in Oracle Solaris 11 that affect user experience. The default user path is /usr/bin. The default path for the root role is /usr/bin:/usr/sbin. The developer tools that were previously located in the /usr/ccs/bin directory has been moved to the /usr/bin / /bi directory. directory The /usr/ccs/bin / / /bi directory is replaced by a /usr/ccs/bin / / /bi → /usr/bin symbolic link. Although most of the user and group management commands almost remain the same, with some enhancements, Oracle Solaris 11 replaces the Solaris Management Console graphical tool and its associated command-line interface of Oracle Solaris 10 with the User Manager GUI.. Transition to Oracle Solaris 11 2 - 16.
(35) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Desktop Environment Enhancements • • •. Enhanced desktop environment Time Slider snapshot management CUPS printing. e. bl a r e nsf. a. -tr n o n. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic Solaris 11 offers a state-of-the-art GNOME desktop with the avusers, Oracle For desktop Q id graphical desktop manager (GDM) as the only graphical login option. Oracle Solaris GNOME h a Sh 10 supports the use of both Common Desktop Environment (CDE) and GDM for login.. The Oracle Solaris 11 desktop includes the innovative Time Slider tool. Integrated with the File Browser, Time Slider supports file and directory recovery, which is made possible through native snapshot and clone capabilities in ZFS. A user can click in Time Slider to snapshot a home directory and later revert to it if necessary. The Oracle Solaris 11 desktop also includes a network administration GUI to manage network connections from the desktop. The Common UNIX Printing System (CUPS) is the default print service on Oracle Solaris 11, replacing the LP print service used in Oracle Solaris 10. CUPS support includes a web and graphical interface to manage your printing environment. A system that is running CUPS becomes a host that can accept print requests from client systems, process those requests, and then send them to the appropriate printer.. Transition to Oracle Solaris 11 2 - 17.
(36) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. System Security Enhancements • •. Secure by default root treated as a role. • • • •. Robust data encryption Driver support for TPM Trusted Extensions enhancements Auditing enhancements. e. bl a r e nsf. a. -tr n o n. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic a fully secure-by-default environment. With automatic av 11 provides OracleQ Solaris id secure-by-default, all network services are disabled except for SSH, or set to listen for local h a h system communications only. In Oracle Solaris 10, the Secure by default feature is available S but disabled by default and had to be enabled during the OS installation or by running the netservices limited command. In Oracle Solaris 11, root is treated as a role rather than a user. During system installation, an initial user is defined. After an initial user login, a user with the appropriate privileges can subsequently assume the role of root by using su or by performing administrative tasks after authentication using sudo or pfexec. You can use the pfexec command to directly assign a rights profile or directly assign more roles to a user account. account Oracle Solaris 11 supports a robust mechanism for your data protection by implementing on-disk encryption/decryption support and key management for ZFS datasets. In the event of theft or in the case of untrusted paths to networked storage, encrypted ZFS datasets can help to safeguard data and prevent unauthorized access. The kernel implements raw encryption/decryption functions that are applied to all data and file system metadata.. Transition to Oracle Solaris 11 2 - 18.
(37) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Oracle Solaris 11 includes driver support for TPM hardware. TPM devices are often embedded in systems to securely store certificates or encryption keys that help to perform platform authentication and/or attestation. Attestation is a process that determines whether a server is trustworthy and has not been breached. Oracle Solaris 11 enhances Oracle Solaris Trusted Extensions by introducing labeled IPsec and labeled ZFS datasets. Additionally, Trusted Extensions now enables per-label and per-user credentials, which allow administrators to set up a requirement for a unique password for each label. This password is in addition to the session login password, thus allowing administrators to set a per-zone encryption key for each label of every user’s home directory. The auditing service of Oracle Solaris 11 is enabled by default default. When compared to Oracle Solaris 10, you do not need to reboot the system when enabling or disabling the auditing service. Further, you can use the auditconfig command to view and edit audit policy.. e. a. bl a r e nsf. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q dฺ to u i h sha ense ( i lic av. Q d i ah. Sh. Transition to Oracle Solaris 11 2 - 19. -tr n o n.
(38) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Agenda • • •. Oracle Solaris 11 new features and enhancements Features comparison Strategy for transitioning to Oracle Solaris 11. e. a. bl a r e nsf. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic av. Q d i ah. Sh. Transition to Oracle Solaris 11 2 - 20. -tr n o n.
(39) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Key Features of Oracle Solaris 10 and Oracle Solaris 11: Comparison Feature. Oracle Solaris 10. Oracle Solaris 11. Packaging model. SVR4 packaging. Image Packaging System (IPS). Maintaining system software. SVR4 patching. Image Packaging System (IPS). OS installation. • Interactive: Installation DVD • Automated: Oracle Solaris JumpStart. • Interactive: Installation CD and package repositories • Automated: Automated Installer and package repositories. e. bl a r fe s Blueprints for custom Distribution Constructor to create Building a n tra DVDs ISO and virtual machine images customized n di t ib ti iimage distribution no a Virtual Networking N/A Network virtualization as ฺ and resource h ) management ae uide ฺ t e ksh User environment and SVR4 G and SVR4 commands ฺn Bash,nGNU, t s commands e at tude r i em his S @ vi se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i ainvthe slidelicshows the major changes made to some of the key features of Oracle The table Q id 10 in Oracle Solaris 11. Solaris h a Sh For more information, refer to the website at http://docs.oracle.com/cd/E36784_01/html/E39134/compare-1.html.. Transition to Oracle Solaris 11 2 - 21.
(40) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Agenda • • •. Oracle Solaris 11 new features and enhancements Features comparison Strategy for transitioning to Oracle Solaris 11. e. a. bl a r e nsf. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic av. Q d i ah. Sh. Transition to Oracle Solaris 11 2 - 22. -tr n o n.
(41) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Transitioning Strategy • • • • •. A sound understanding of the key features of Oracle Solaris 10 is critical. Solaris is binary-compatible across hardware architectures. Source code is compatible across different machine architectures. le Migration path for ZFS and UFS file systems is supported. erab f s n Multiple migration paths for transitioning applications: tra. n-. – A Applications li ti can run di directly tl on O Oracle l S Solaris l i 11 11. no a s – Applications can run in Oracle Solaris 10 haZones.. ) deฺ e a i ฺ t u e G n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lichave a sound understanding of the key features of Oracle Solaris 10, av should Administrators Q id Oracle Solaris Zones and ZFS (especially to support root file systems), before including h a Sh preparing for transitioning to Oracle Solaris 11. Oracle Solaris 11 builds upon these features. Oracle continues the Solaris commitment to binary compatibility across hardware architectures. This simplifies migrations between major Oracle Solaris releases and allows applications to take advantage of performance gains from Oracle’s newest SPARC and x86 hardware systems. Oracle guarantees source code compatibility across different machine architectures, allowing software providers to simply recompile applications across hardware architectures.. O l S Oracle Solaris l i 11 supports t a migration i ti path th ffor ZFS and d UFS fil file systems t by b using i the th ZFS shadow migration feature. You can migrate data from an old file system to a new file system while simultaneously allowing access and modification of the new file system during the migration process. Oracle offers multiple migration paths for transitioning applications to Oracle Solaris 11. Applications can run directly on Oracle Solaris 11 in global or nonglobal zones. The release global zone. Just as also supports Oracle Solaris 10 Zones hosted within an Oracle Solaris 11 g Oracle Solaris 8 and 9 branded zones helped to transition applications to Oracle Solaris 10, Oracle Solaris 10 branded zones in Oracle Solaris 11 enable a more gradual, step-by-step approach to an OS migration. Transition to Oracle Solaris 11 2 - 23.
(42) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Summary In this lesson, you should have learned how to: • Describe the Oracle Solaris 11 operating system • Describe the Oracle Solaris 11 features and enhancements • Identify the key differences between Oracle Solaris 10 and the Oracle Solaris 11 features le b a • Strategically prepare to transition to Oracle Solaris 11 fer. s n a n-tr. no a as ฺ h ) ฺae uide t e ฺn nt G s e at tude r i em his S @ vi se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic presented with the new features and enhancements in the Oracle av you were In this Q lesson, id 11 operating system. You had an opportunity to compare the features in Oracle Solaris h a 10 with those of Oracle Solaris 11. Finally, you were provided a strategy to transition Sh Solaris from Oracle Solaris 10 to Oracle Solaris 11.. Transition to Oracle Solaris 11 2 - 24.
(43) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Managing M i Software S ft Packages P k in Oracle Solaris 11. e. a. bl a r e nsf. Sh. Q d i ah. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic av. -tr n o n.
(44) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Job Workflow. Introducing New Features and Enhancements M Managing i Software S ft Packages. Installing. e. bl a r e nsf. Network Administration Enhancements. Administering Zones. a. -tr n o n. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i avbegin theliclesson, take a look at the job workflow in the slide diagram. So far, you BeforeQ you id learned about the new features and enhancements of the Oracle Solaris 11 OS. have h a Sh You will now learn how to manage software packages with the help of an IPS repository. ZFS Enhancements. Security Enhancements. Transition to Oracle Solaris 11 3 - 2.
(45) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Objectives After completing this lesson, you should be able to: • Describe the Image Packaging System (IPS) • Plan for moving to IPS • Configure a local package repository • Configure network client systems to use IPS • Search for software packages by using IPS le b a er f • Install software packages by using IPS s an r t • Remove software p packages g by y using g IPS on n a • Update the OS image by using IPS s a h eฺ ) e • Manage boot environments id ฺa. et t Gu n ฺ s n e e t d a mir is Stu e i@ e th v a ฺq ©o2014, usOracle and/or its affiliates. All rights reserved. dCopyright i t h sha ense ( i licyou to the new Oracle Solaris 11 software packaging feature: Image avintroduces This lesson Q id Packaging System (IPS). The lesson begins with a description of IPS and later compares IPS h a h with package management in the Oracle Solaris 10 operating system. S Next, the lesson shows you how to configure a local IPS repository. It then shows you the ways to manage software packages by using IPS. The lesson also covers how to update a system to Oracle Solaris 11.2. Finally, you learn to manage boot environments in the Oracle Solaris 11 operating system.. Transition to Oracle Solaris 11 3 - 3.
(46) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Agenda • • • • •. Introducing the Image Packaging System (IPS) Configuring a local IPS repository Managing software packages by using IPS Updating a system to Oracle Solaris 11 11.2 2 Managing boot environments. e. a. bl a r e nsf. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic av. Q d i ah. Sh. Transition to Oracle Solaris 11 3 - 4. -tr n o n.
(47) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. IPS: Overview Oracle Network Repositories Firewall Mirrored Network Repository Custom Repository. e. bl a r e nsf. a. -tr n o n. a s a h eฺ ) e tฺa Guid e n Oracle Solaris sฺ ent e t Image Packaging System ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i licSystem (IPS) is a framework that enables software lifecycle avPackaging The Image Q id management, such as installation, upgrade, and removal of packages. IPS also enables users h a h to create their own packages, create and manage package repositories, and copy S and mirror existing software package repositories. Packages can be installed only into file systems that Operating System. Active Boot Environment. Inactive Boot Environment. are part of a boot environment (BE). For example, on a default Oracle Solaris 11 installation, only datasets under rpool/ROOT/BEname/ are supported for package operations. Using IPS, you can perform the following tasks: • Create and manage images. • Search the IPS packages on your system and in IPS repositories. • Copy, mirror, create, and administer package repositories. • Create and publish IPS packages to a package repository.. Transition to Oracle Solaris 11 3 - 5.
(48) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Planning for IPS • • • • •. Oracle Solaris 11 or later SPARC and x86 architectures Web-based or local package repository Repository mirroring Client access to IPS server. e. bl a r e nsf. a. -tr n o n. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i v ic IPS is Q theapackagingl system for the Oracle Solaris 11 operating systems as SVR4 is the id packaging system for the Oracle Solaris 10 operating systems. A key component of IPS is h a h the package repository. A package repository is a location where software packages are S stored and from where packages are retrieved by client systems. You can even clone an entire package repository, such that any package repository that the client can access has everything they need to proceed.. Transition to Oracle Solaris 11 3 - 6.
(49) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. IPS Components. Package Repository. Cloned Repository. e. bl a r e nsf. Server Client. a. pkg k Command. -tr n o n. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i av up of thelicfollowing key components. Each component has a role to play. IPS is Q made d •i Package: A package in IPS is a collection of actions defined by a set of key-value pairs h a tthat at represent ep ese t metadata, etadata, such suc as classification, c ass cat o , descriptions, desc pt o s, o or ot other e att attributes butes suc such as Sh. path and alias. The key-value pair can also represent a data payload. These actions can represent items, such as directories, links, drivers, and services. Each IPS package is represented by a Fault Management Resource Identifier (FMRI), which is used with the pkg(1) command to indicate the packages on which to perform operations.. •. Repository: A repository is a location where clients publish and retrieve packages. The location is described by a uniform resource identifier (URI), such as http://pkg oracle com/solaris/release A repository can contain packages http://pkg.oracle.com/solaris/release. from any number of publishers, such as solaris and ha-cluster. A publisher can publish to multiple repositories. A repository has an origin and zero or more cloned repositories. The repository origin is the location of a package repository that contains both package metadata (package manifests and catalogs) and package content (package files).. Transition to Oracle Solaris 11 3 - 7.
(50) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. •. FMRI: The FMRI includes descriptive information about the package, such as the package name, version information, and date. For example, the FMRI, pkg://solaris/developer/[email protected],5.110.175.2.0.0.42.2:20140624T183919Z, consists of the following information: - Scheme: pkg - Publisher: solaris - Category: developer - Package Name: apptrace - Component Version: 0.5.11 - Build Version: 5.11 - Branch Version: 0.175.2.0.0.42.2 - Time Stamp (when the package was published): 20140624T183919Z. • •. Manifest: A manifest describes the components and attributes that make up a package. Client package management utility: pkg(1) is a command-line utility that you can use to create and manage images; search package data; and perform software installation, upgrade, and removal. Boot environment (not shown): A boot environment (BE) is a bootable image of an Oracle Solaris 11 operating system plus any other application software packages installed in that image. System administrators can maintain multiple BEs in their systems, and each BE can have different software versions installed.. •. a. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q dฺ to u i h sha ense ( i lic av. Q d i ah. Sh. Transition to Oracle Solaris 11 3 - 8. -tr n o n. e. bl a r e nsf.
(51) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Agenda • • • • •. Introducing the Image Packaging System (IPS) Configuring a local IPS repository Managing software packages by using IPS Updating a system to Oracle Solaris 11 11.2 2 Managing boot environments. e. a. bl a r e nsf. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic av. Q d i ah. Sh. Transition to Oracle Solaris 11 3 - 9. -tr n o n.
(52) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Local Package Repository •. The default package repository is available at: http://pkg.oracle.com/solaris/release/. •. Reasons for creating a local repository: – – – –. Default repository not available to clients Performance Security Replication. e. bl a r e nsf. a. -tr n o n. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic avsystem installation The default manifest installs the Oracle Solaris 11 operating system from Q d hi public repository at http://pkg.oracle.com/solaris/release/. If you have an Oracle support athe h contract, the installation, you can change the default manifest to use the Oracle S supportpost repository. You can also add additional publishers and repositories, such as those for Oracle Exadata, Oracle Solaris Cluster, and Oracle Solaris Studio. You can create your own local package repository. Having a local package repository is necessary when your network clients do not have access to the web-based default repository. Other reasons you might want to have a local copy of a package repository include: • Performance: Having a local package repository allows clients access to packages at local network speeds. speeds • Security: You might not want your client systems to have access to the Internet. • Replication: You want to ensure that an installation that you perform next year is exactly the same as the installation you perform today.. Transition to Oracle Solaris 11 3 - 10.
(53) Unauthorized reproduction or distribution prohibitedฺ Copyright© 2015, Oracle and/or its affiliatesฺ. Creating a Local Repository 1. Obtain software packages: – Download IPS repository zip files. – Copy from the default package repository.. 2. Create a ZFS file system for the repository. 2 repository 3. Copy the packages to the repository. 4. Set the publisher.. e. bl a r e nsf. a. Sh. a s a h eฺ ) e tฺa Guid e n sฺ ent e t ira Stud m e his @ i v se t a q ฺ u Oracle and/or its affiliates. All rights reserved. © 2014, dCopyright i o t h sha ense ( i lic you perform the following steps: aavlocal repository, To create Q d ah1.i Obtain the repository files.. -tr n o n. When creating a local package repository repository, you first download the Oracle Solaris 11 repository files from: http://www.oracle.com/technetwork/server-storage/solaris11/downloads/index.html The repository files provide you with a complete archive of software packages, which allow you to set up a local network IPS repository to which client systems can connect. Download the following repository files: - README file (README-zipped-repo.txt) -. Repository assembly script (install-repo.ksh). -. MD5 checksum file. -. Four IPS repository parts (zip files). 2. Make the installation script file executable. # cd /opt/ora/repodir (download directory) # chmod +x install-repo.ksh. Transition to Oracle Solaris 11 3 - 11.
Related documents
This estimate of Russia’s unofficial economy in 1989 was substantially lower than those in other Soviet republics such as Georgia where the share of value-added by household
While both of the approaches have a common goal in describing service stacks, they have different focuses: As TOSCA’s main objective is the technical portability of cloud services
daily press review, daily news summary, daily news digest, media alerts, thematic media review, weekly previews and daily social media summaries deliverable on working days
Some qualifying countries have also experienced strong growth in foreign direct investment aimed at taking advantage of AGOA with positive spin-offs for increased employment
Dimensional reduction to 10 dimensions gives us different D2/D6 systems (with metric functions) which in all the cases with a combination of 4 dimensional Taub-NUT and
The main purpose of this paper is to develop a mathematical model to estimate the hourly global solar radiation on horizontal surfaces in the cities using the
This course presents a comprehensive study of United States history from 1877 to the present Students will learn major concepts and themes in United States history, with a strong
On behalf of Century Company, and, in its own right, Graco denies the allegations of the staff, set forth in paragraphs 6–70 above; it denies that the products named herein, when
