From Wiki-UX.info

How to convert or unconvert a HP-UX 11i v3 System to Trusted Mode
Jump to: navigation, search

How to convert or unconvert a HP-UX 11i v3 System to Trusted Mode

Using System Management Homepage TUI

1. Choose option a, Auditing and Security

HP-UX System Management Homepage (Text User Interface)
                                      SMH
--------------------------------------------------------------------------------
 a - Auditing and Security
 c - Auditing and Security Attributes Configuration(new)
 d - Peripheral Devices
 e - Resource  Management
 f - Disks and File Systems
 g - Display
 k - Kernel Configuration
 l - Printers and Plotters(new)
 m - Event Monitoring Service
 n - Networking and Communications
 o - View samlOg
 p - Printers and Plotters
 s - Software Management
 u - Accounts for Users and Groups
 
 
 
 
--------------------------------------------------------------------------------
x-Exit smh                     w-WebLaunch        1-Help
ENTER-Launch Functional Area   v-SAM Log Viewer


2. Choose Audited Events

Auditing and Security
--------------------------------------------------------------------------------
 Audited Events
 Audited System Calls
 Audited Users
 System Security Policies
 Authenticated Commands
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
--------------------------------------------------------------------------------
x-Exit smh   ENTER-Select   ESC-Back


That will open the SAM based Trust System TUI. Got to Actions, Convert / Unconvert the System to Trusted

+ ===                   Auditing and Security (delta) (1)                      +
¦File List View Options Actions                                           Help ¦
¦                       ¦ Turn Auditing ON                         ¦           ¦
¦Auditing Turned: OFF   ¦ ---------------------------------------- ¦           ¦
¦                       ¦ Set Audit Monitor and Log Parameters...  ¦           ¦
¦-----------------------¦ View Audit Log...                        ¦-----------¦
¦Audited Events         ¦ Convert the System to Trusted            ¦24 selected¦
¦-----------------------¦ ======================================== ¦-----------¦
¦               Audit   ¦ (nothing selected)~~~~~~~~~~~~~~~~~~~~~~ ¦           ¦
¦  Event Type   Success +------------------------------------------+           ¦
¦+---------------------------------------------------------------------------+ ¦
¦¦ admin        No        No        .audit_ctl, .audit_tag_ctl, .cachefsstat ^ ¦
¦¦ basic        No        No                                                   ¦
¦¦ close        No        No        close, mq_close, munmap, sem_close         ¦
¦¦ create       Yes       Yes       creat, mkdir, mknod, msgget, pipe, pset_   ¦
¦¦ delete       No        No        mq_unlink, msgctl, pset_destroy, rmdir,    ¦
¦¦ exec         No        No        execv, execve                            ¦ ¦
¦¦ ipcclose     No        No        fdetach, shutdown                        ¦ ¦
¦¦ ipccreat     No        No        bind, socket, socketpair                 ¦ ¦
¦¦ ipcdgram     No        No                                                 ¦ ¦
¦¦ ipcopen      No        No        accept, connect, fattach                 v ¦
¦ <------------------------------------------------------------------------->+ ¦
¦                                                                              ¦
+------------------------------------------------------------------------------+


Using the Command Line Interface

# /usr/lbin/tsconvert
Creating secure password database...
Directories created.
Making default files.
System default file created...
Terminal default file created...
Device assignment file created...
Moving passwords...
secure password database installed.
Converting at and crontab jobs...
At and crontab files converted.
# /usr/lbin/tsconvert -r
Restoring /etc/passwd...
/etc/passwd restored.
Deleting at and crontab audit ID files...
At and crontab audit ID files deleted.
This page was last modified on 10 March 2010, at 16:30. This page has been accessed 3,757 times.