Manualshelf

HP WBEM Services Version A.02.11.00 Release Notes HP-UX 11i v3 (766167-001, March 2014)

ManualsBrandsHP ManualsSoftwareHP-UX 11i WBEM Software
12345678910
Table 2 Remote user authentication methods (continued)
HTTP Basic AuthenticationCertificate Based Authentication (CBA)
Benefits and Considerations
Does not require any server configuration and hence,
easy to set up.
Requires a one-time server configuration.
Does not require the remote user to provide a password
each time to access the WBEM data.
Requires the remote user to provide a password to
access the WBEM data.
Prevents intruders from gaining access to internal
network resources by spoofing” passwords.
Requires to update the client application whenever the
password is changed.
Does not require additional configuration or updates
to applications whenever a password is changed.
For more information, see...
“Using HTTP basic authentication” (page 9)“Using CBA(Certificate Based Authentication)” (page 10)
Using HTTP basic authentication
The /etc/pam.conf file is the configuration file for PAM. The /etc/pam.conf file contains a
list of services and each service is mapped to a corresponding service module. When a service is
requested, its associated module is invoked. WBEM Services uses the default authentication method
specified in the OTHER directive of the /etc/pam.conf file. To use other authentication methods,
you must edit the/etc/pam.conf file and add a "wbem" service entry. See the following example.
For additional information, see the pam(3) and pam.conf(4) manpages.
#
# Example of /etc/pam.conf file with WBEM services (using LDAP)
#
# Authentication management
wbem auth required libpam_hpsec.so.1
wbem auth sufficient libpam_unix.so.1
wbem auth required libpam_ldap.so.1 try_first_pass
# Account management
wbem account required libpam_hpsec.so.1
wbem account sufficient libpam_unix.so.1
wbem account required libpam_ldap.so.1
# Session management
wbem session required libpam_hpsec.so.1
wbem session sufficient libpam_unix.so.1
wbem session required libpam_ldap.so.1
# Password management
wbem password required libpam_hpsec.so.1
wbem password required libpam_ldap.so.1 try_first_pass
wbem password required libpam_ldap.so.1 try_first_pass
NOTE: HP-UX uses the cimservera executable in HP WBEM Services to provide the cimserver
with PAM Authentication services. For more information, see the HP WBEM Services for HP-UX
System Administrator Guide.
Security 9