HP XP P9000 Command View Advanced Edition Suite Software 7.6.1-00 Administrator Guide
• When directly specifying information about the Kerberos server:
Table 45
• When using the DNS server to look up information about the Kerberos server:
Table 46
• Properties for an external authorization server
These properties need to be set if you directly specify information about the Kerberos server and
an external authorization server is also linked. Specify the properties for each realm.
Table 47
Table 48
NOTE:
• To use StartTLS for communication between the management server and the LDAP directory server,
you need to directly specify information about the LDAP directory server to connect to in the ex-
auth.properties file.
• If you use the DNS server to look up the LDAP directory server to connect to, it might take longer
for users to log in.
Table 44 Setup items in the exauth.properties file for Kerberos authentication (common items)
DetailsProperty names
Specify an external authentication server type. Specify kerberos.
Default value: internal (used when not linking to an external
authentication server)
auth.server.type
Specify whether to also link to an external authorization server.
Specify true to link to an external authorization server.
Specify false to not to link to an external authorization server.
Default value: false
auth.group.mapping
Table 45 Setup items in the exauth.properties file for Kerberos authentication (when directly specifying
information about the external authentication server)
DetailsAttributes
Specify the default realm name. If you specify a user ID but
not a realm name in the login window of the GUI, the user
is authenticated as a user who belongs to the realm specified
for this attribute. This attribute is required.
Default value: none
default_realm
Specify false.
Default value: false
dns_lookup_kdc
Administrator Guide 143