tninit Command

Edit online

Purpose

Initializes the Trusted Network subsystem and maintains the Trusted Network rules database.

Syntax

tninit [ -v m ] init [ filename ]

tninit [ -v m ] loadfilename

tninit [ -v m ] savefilename

tninit [ -v m ] dispfilename

Description

The tninit command initializes the Trusted Network subsystem and maintains the Trusted Network rules database, including the /etc/security/rules.host and the /etc/security/rules.int files that are loaded upon system startup.

Flags

Item	Description
-v	Specifies verbose mode.
-m	Maintains the existing host rules when loading a new database.
init [ filename ]	Initializes the Trusted Network subsystem. This parameter loads tables into the kernel that are responsible for making the translation between a local representation of an Sensitivity Label (SL) and what is transmitted over the network. Optionally, you can specify the name of a file containing the mappings with the filename parameter. If you do not specify a file, a set of hard coded mappings is used. You can see an example of the mapping in the /usr/samples/tn/rfc1108.example file.
load filename	Loads a rules database into the kernel. Use the filename parameter to specify the file name. The command appends the `.host` and `.int` extensions to get the two files that comprise the database.
save filename	Saves the rules that are active in the kernel into the two files of the database. Uses the filename parameter to specify the file name. The `.host` and `.int` extensions are appended to the file name to get the two files that comprise the database.
disp filename	Displays the database that is specified for standard output (STDOUT). Use the filename parameter to specify the file name. The command appends the `.host` and `.int` extensions to get the two files that comprise the database.

Parameters

Item	Description
filename	Specifies the file name. Do not use `init`, `load`, `save`, or `disp` as file name.

Authorization

A user must have the aix.mls.network.init authorization to run the tninit command.

Examples

To initialize the Trusted Network subsystem, enter the following command:

tninint init

To load a rules database into the kernel, enter the following command:

tninit load /etc/security/rules

To save the rules active in the kernel into the two files of the database, enter the following command:

tninit save /etc/security/rules

To display the rules database specified into STDOUT, enter the following command:

tninit disp /etc/security/rules