Manualshelf

HP CIFS Server 3.0b Administrator's Guide version A.02.01.01

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software
111112113114115116117118119120
Windows 2000/2003 Domains
Join an HP CIFS Server to a Windows 2000/2003 Domain as an ADS Member Server
Chapter 5 105
# Replace adsdc.myrealm.xyz.com with your Windows ADS DC full#
# domain name. #
# #
[libdefaults]
default_realm = MYREALM.XYZ.COM
default_tkt_enctypes = DES-CBC-CRC
default_tgs_enctypes = DES-CBC-CRC
ccache_type = 2
[realms]
MYREALM.XYZ.COM = {
kdc = adsdc.myrealm.xyz.com:88
admin_server = adsdc.myrealm.xyz.com
}
[domain_realm]
.xyz.com = MYREALM.XYZ.COM
NOTE :88 is required on the server field.
[logging]
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmin.log
default = FILE:/var/log/krb5lib.log
For detailed information on how to configure the /krb5.conf file, refer to
the krb5.conf(4) man page.
Step 3. Run the following commands to verify Kerberos configuration
login as root
run kinit <user e.g. Administrator@myrealm.xyz.com>
(add user and password to Windows ADS DC if necessary)
The possible errors during verification are as follows:
Pre-Authentication Failed means you have typed the password
incorrectly.
Clock skew too great means the time on the HP-UX machine is
not synchronized with the Windows domain controller. Set TZ=GMT
and try again.