Installing on Solaris
Solaris binaries are for the SPARC architecture. For Solaris on the Intel x86 platform, no pre-compiled binaries are available.
On the CD-ROM, binaries for Solaris are located in the directory
/install/solaris/. Separate packages are available for Solaris 2.5.1, Solaris 2.6 - 10, and Solaris 8 - 10. The package for 8 - 10 contains support for Entrust certificates on Solaris 8. Please read the
README file for any important last-minute information.
To install SSH Tectia Server on Solaris, do the following:
- (Not necessary in "third-digit" maintenance updates.) Copy the license file as instructed in Section Licensing.
- (If installing from CD-ROM) Copy the installation package to your machine.
- Unpack the distribution binary to a suitable place. The standard place is
/var/spool/pkg in a Solaris environment.
$ uncompress ssh2-<v>-sparc-<solaris-v>.pkg.Z
In the command,
<v> is the current package version of SSH Tectia Server (for example,
<solaris-v> is the version of the Solaris operating system (
- Then install the package with the
pkgadd tool with root privileges.
# pkgadd -d ssh2-<v>-sparc-<solaris-v>.pkg all
- The installation should (re)start the server daemon automatically. If the daemon does not start (because of a missing license, for example), you can start it after correcting the problem by issuing the command:
# /etc/init.d/sshd2 start
In this command,
<install_dir> is the directory chosen during installation. By default it is
Enabling FIPS (Optional)
For a list of platforms on which the FIPS library has been validated or tested, see SSH Tectia Client/Server Product Description.
To enable the FIPS-certified mode, run the following command:
# /usr/local/sbin/ssh-crypto-library-chooser fips
This will set the library symlinks, so that
ssh2 will use the FIPS-certified crypto library. You can change back to using the standard crypto library by running the following command:
# /usr/local/sbin/ssh-crypto-library-chooser std
You can query the current library status by running the script without arguments. This will show the current symlink target (
Special Considerations on Solaris
Before upgrading SSH Tectia Server on Solaris, you must uninstall the old version. See Section Removing from Solaris for instructions.
After removing the old version, proceed with installation as described above. The configuration file is not removed in uninstallation.
If you do not have the
sshd2 startup script in
/etc/init.d after upgrading, please run the following commands:
# cp SSHssh2/reloc/share/ssh-4.2.0/sshd2 /etc/init.d/
# ln -f -s /etc/init.d/sshd2 /etc/rc2.d/K891sshd2
# ln -f -s /etc/init.d/sshd2 /etc/rc3.d/S891sshd2
# /etc/init.d/sshd2 start