I am completely new using TEm for applying patches.I am just wondering if there is any way of applying patches when we have zones installed on the solaris box, if so can someone explain me the step by step procedure of how to do it.
apply patch to golbal zone alone without impacting other non global zones
Applying patch to all zones present on solaris box
Applying patch to non global zones alone without impacting global zone.
First of all, we can install TEM client on each local zone, so that the TEM server sees each zone as a separate tem computer. So in TEM console you should be able to see each zone as a separate machine.
There are two types of Solaris patches based on true/false value of “SUNW_PKG_ALLZONES” flag which can be found in info file of patch itself. Our fixlets content are different for these two types.
1, those patches with SUNW_PKG_ALLZONES true. This means that Oracle force the installation to all zones. In the sense it can only be installed in global zone and the changes will be propagated to all local zones , so that all zones get patched. our fixlets for those patch has only one installation action, run it , and all zones get patches.
those patches with SUNW_PKG_ALLZONES false. This means installation can happen in either global zone or local zones. Our fixlets for these patches have two installation actions, one for patching all zones(only if it is global) , another for patching only itself without impacting other zones.
to answer your questions:
apply patch to golbal zone alone without impacting other non global zones
You can only do this for second type of patch, run the second action.
Applying patch to all zones present on solaris box
This is the default action, so run the first action of any patch fixlet will have this effect.
Applying patch to non global zones alone without impacting global zone.
You need to run fixlet on local zones. As mentioned before, each local zone can appear as an separate machine in console if client is installed. Type 1 patch will not be applicable because they are forced to install on global. Type 2 patch can be applicable, and run either of the two actions.