Manualshelf

HP CIFS Server 3.0k Administrator's Guide version A.02.04

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software
121122123124125126127128129130
Components for Kerberos Configuration
The following is a list of the various components that are necessary to configure HP CIFS Server
for Kerberos authentication:
HP CIFS Server: Version A.02.01 or later (Based upon Samba 3.0.7 or later)
HP-UX 11i v1, HP-UX 11i v2, or HP-UX 11i v3
HP-UX Kerberos Client
Kerberos v5 Client C.1.3.5.06 or later on HP-UX 11i v1
Kerberos v5 Client D.1.6.2 or later or HP-UX 11i v2
Kerberos v5 Client E.1.6.2 or later on HP-UX 11i v3
Service Pack 1 is recommended for Windows 2003, and required for inter-operation with
Kerberos v5 Client C.1.3.5.06 or later on HP-UX 11i v1, Kerberos v5 Client D.1.6.2 or later
on HP-UX 11i v2, or Kerberos v5 Client E.1.6.2 or later on HP-UX 11i v3.
HP-UX LDAP-UX Integration product
Windows 2000, Windows 2003, or Windows 2008 Server domain.
Windows 2000 or Windows XP Client
Configuring kerb5.keytab
Here are the required components to configure HP CIFS Server with HP-UX Internet Services
co-existence:
Kerberos v5 Client C.1.3.5.06 or later on HP-UX 11i v1, Kerberos v5 Client D.1.6.2 or later
on HP-UX 11i v2, or Kerberos v5 Client E.1.6.2 or later on HP-UX 11i v3.
/etc/krb5.conf file
/etc/opt/samba/smb.conf file
/etc/krb5.keytab file
net ads keytab create command
The first task is to configure HP CIFS Server for Kerberos authentication and join it to a Windows
domain. This configuration will disable HP-UX Internet Services access to the HP-UX system
temporarily until all the configuration steps are completed.
Use the following steps to generate a valid keytab file and to configure an HP CIFS Server to
access the keytab file:
HP-UX Kerberos Application Co-existence 129