Remote TE data base access

Centralized Trusted Signature Database (TSD) policies and Trusted Execution (TE) policies can be implemented in your system environment by storing them in LDAP.

The database that controls the TSD policies and TE policies are stored independently of each system. AIX® The centralized TSD policies and TE policies are stored in LDAP so that they can be centrally managed. Using centralized TSD policies and TE policies allow you to verify that the policies in LDAP are the master copy, and that the policies can update the clients whenever the client is reinstalled, updated, or security is breached. Centralized TE policies allow one location to enforce the TE policies without needing to update each client separately. Centralized TSD policies are much easier to manage than TDS polices that are not centralized.

AIX Utilities can be used to export local TSD policies and TE policies data to LDAP, configure clients to use TSD policies and TE policies data in LDAP, control the lookup of TSD policies and TE policies data, and manage the LDAP data from a client system. The following sections provide more information about these features.