Specifications
23-7
Managing Access Server Security
Network Access Server Requirements
Before configuring security-specific parameters, make sure that:
• You have entered the correct Internet address and subnet mask. (See the
Configuring the Internet Address and Subnet Mask section in Chapter 7.)
• There is an Internet gateway to the KDC if the KDC is not on the access server
subnet. (See the Defining Networks Available Through a Specific Gateway
section in Chapter 7.)
• The DNS parameters are set correctly if Internet hosts are not explicitly
configured on the access server. (See the Displaying the DNS Counters section
in Chapter 7.)
Configuration of User Authentication
The configuration of user authentication on the access server involves entering
several commands shown in the examples in this section. For details about
command syntax, refer to the Cabletron Network Access Software Command
Reference guide.
Case Sensitivity
Kerberos user names, instances, realms, and passwords are case sensitive.
Configuring Kerberos Settings
When you set up the access server for user authentication, you need to complete
the following steps:
Step Action
1 Specify a realm and a KDC.
2 If the default is incompatible with the KDCs in your realm, specify the TCP
port numbers on the KDC to which the access server sends messages for
password changes and ticket requests.
3 Change the default timeout if you want to do so.