HP XP P9000 Command View Advanced Edition Suite Software 7.6.1-00 Administrator Guide
DetailsAttributes
Specify the information about the Kerberos server in the
following format:
host-name-or-IP-address[:port-number]
This attribute is required.
host-name-or-IP-address
If you specify the host name, make sure beforehand
that the name can be resolved to an IP address. If you
specify the IP address, use an IPv4 address. In an IPv6
environment, you must specify the host name. Note that
you cannot specify the loopback address (localhost
or 127.0.0.1).
port-number
Make sure beforehand that the port you specify is set
as the listen port number on the Kerberos server. If you
do not specify a port number or the specified port
number cannot be used in a Kerberos server, 88 is as-
sumed.
When specifying multiple Kerberos servers, separate them
with commas as follows:
host-name-or-IP-address[:port-number]
,host-name-or-IP-address[:port-number],...
value-specified-for-realm_name.kdc
#
Note:
To specify the attributes, use the following syntax:
auth.kerberos.attribute=value
#:
When using StartTLS as the protocol for connecting to the external authorization server, specify
the same host name as the value of CN in the external authorization server certificate. You cannot
use an IP address.
Table 46 Setup items in the exauth.properties file for Kerberos authentication (when using the DNS
server to look up information about the external authentication server)
DetailsAttributes
Specify the default realm name. If you specify a user ID but not a realm
name in the login window of the GUI, the user is authenticated as a user
who belongs to the realm specified for this attribute. This attribute is
required.
Default value: none
default_realm
Specify true. This attribute is required.
However, if all the following attributes values are already set, the
Kerberos server will not be looked up by using the DNS server.
• realm_name
• value-specified-for-realm_name.realm
• value-specified-for-realm_name.kdc
dns_lookup_kdc
Administrator Guide 145