SSH Tectia  
Previous Next Up [Contents] [Index]

    About This Document >>
    Installing SSH Tectia Server >>
        Planning the Installation >>
        Installing the SSH Tectia Server Software >>
            Installing on AIX
            Installing on HP-UX
            Installing on Linux
            Installing on Solaris
        Removing the SSH Tectia Server Software >>
    Getting Started >>
    Configuration >>
    Authentication >>
    Application Tunneling >>
    Troubleshooting >>
    Man Pages
    Advanced Options >>
    Log Messages >>

Installing on Solaris

Solaris binaries are for the SPARC architecture. For Solaris on the Intel x86 platform, no pre-compiled binaries are available.

On the CD-ROM, binaries for Solaris are located in the directory /install/solaris/. Separate packages are available for Solaris 2.5.1, Solaris 2.6 - 10, and Solaris 8 - 10. The package for 8 - 10 contains support for Entrust certificates on Solaris 8. Please read the README file for any important last-minute information.

To install SSH Tectia Server on Solaris, do the following:

  1. (Not necessary in "third-digit" maintenance updates.) Copy the license file as instructed in Section Licensing.
  2. (If installing from CD-ROM) Copy the installation package to your machine.
  3. Unpack the distribution binary to a suitable place. The standard place is /var/spool/pkg in a Solaris environment. 
    $ uncompress ssh2-<v>-sparc-<solaris-v>.pkg.Z
    In the command, <v> is the current package version of SSH Tectia Server (for example, 4.4.8.27) and <solaris-v> is the version of the Solaris operating system (solaris2.6-10, or solaris8-10).
  4. Then install the package with the pkgadd tool with root privileges. 
    # pkgadd -d ssh2-<v>-sparc-<solaris-v>.pkg all
  5. The installation should (re)start the server daemon automatically. If the daemon does not start (because of a missing license, for example), you can start it after correcting the problem by issuing the command: 
    # /etc/init.d/sshd2 start
    Or alternatively: 
    # /<install_dir>/sbin/sshd2
    In this command, <install_dir> is the directory chosen during installation. By default it is /usr/local.

Enabling FIPS (Optional)

For a list of platforms on which the FIPS library has been validated or tested, see SSH Tectia Client/Server Product Description.

To enable the FIPS-certified mode, run the following command: 

# /usr/local/sbin/ssh-crypto-library-chooser fips

This will set the library symlinks, so that sshd2 and ssh2 will use the FIPS-certified crypto library. You can change back to using the standard crypto library by running the following command: 

# /usr/local/sbin/ssh-crypto-library-chooser std

You can query the current library status by running the script without arguments. This will show the current symlink target (libsshcrypto-std or libsshcrypto-fips).

Special Considerations on Solaris

Before upgrading SSH Tectia Server on Solaris, you must uninstall the old version. See Section Removing from Solaris for instructions.

After removing the old version, proceed with installation as described above. The configuration file is not removed in uninstallation.

If you do not have the sshd2 startup script in /etc/init.d after upgrading, please run the following commands: 

# cp SSHssh2/reloc/share/ssh-4.2.0/sshd2 /etc/init.d/
# ln -f -s /etc/init.d/sshd2 /etc/rc2.d/K891sshd2
# ln -f -s /etc/init.d/sshd2 /etc/rc3.d/S891sshd2
# /etc/init.d/sshd2 start

Previous Next Up [Contents] [Index]

[ Contact Information | Support | Feedback | SSH Home Page | SSH Products ]

Copyright © 2010 SSH Communications Security Corp.
This software is protected by international copyright laws. All rights reserved.
Copyright Notice