Manualshelf

HP CIFS Client A.01.09 Administrator's Guide, August 2003

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software
41424344454647484950
CIFS Authentication Using Kerberos
Using Kerberos with the HP CIFS Client
Chapter 4 47
http://www.isi.edu/gost/publications/kerberos-neuman-tso.html
The documentation repository at Massachusetts Institute of
Technology (the developer of Kerberos):
http://web.mit.edu/kerberos
The Kerberos specification, RFC 1510. An excellent introduction
(section 1) and descriptions of message exchanges (section 3):
http://ftp.rfc-editor.org/in-notes/rfc1510.txt
Several informative papers can also be found at the Microsoft web
site. Most of these documentation also include practical infomation
on how you should set up security in networks of Windows
computers. Please search for kerberos or related topics at:
http://www.microsoft.com
Step 2. Set Up and Verify the Kerberos Infrastructure
In order to utilize Kerberos with the HP CIFS Client, you must have a
working Kerberos infrastructure on your network (completely
independent of the CIFS Client) which consists of:
A Key Distribution Center (KDC)
At least one CIFS server that supports Kerberos and is a member of
the KDC’s domain (called a “realm” in the Kerberos terminology)
At least one user principal account on the KDC
A properly configured HP-UX Kerberos Client installation on the
system running the HP CIFS Client
NOTE A domain name server (DNS) is recommended to be active on a Windows
server on your network. CIFS servers to which you want to connect
should be configured in the Windows DNS table in order to be recognized
by the KDC.
If you are setting up a Key Distribution Center on a Windows 2000
server, consult your Microsoft documentation.