Planning and Configuring HP DCE 1.7

6-2 Planning and Conﬁguring HP DCE 1.7

HP-UX Integrated Login

Overview

At release 10.0, HP-UX made available a new HP-UX Integrated Login

product that differs from the DCE-Integrated Login Utilities provided on

HP-UX 9.x systems. Whereas DCE-Integrated Login Utilities are tightly

coupled with DCE, HP-UX Integrated Login is designed to modularly

combine UNIX login with various authentication technologies, including

DCE.

HP-UX Integrated Login combines UNIX login with other authentication

technologies. It provides a generic interface which login applications can

use to interface with various user-authentication technologies.

NOTE Connection initiated via Secure Internet Services (SIS) will not result in

DCE credentials on the server.

This release offers the following authentication technologies:

• UNIX mechanism (/etc/passwd)

• DCE Security Services

On a system using HP-UX Integrated Login, the authentication

technology is conﬁgured by a system administrator. The conﬁguration

chosen is known as the “authentication policy” and all Integrated Login

utilities on the system enforce that policy. An authentication policy

speciﬁes the following:

• The login technology— The preferred user-authentication technology

for granting access to the local system.

• The fallback technology— The backup authentication technology,

which is used when the preferred login technology is unavailable or

fails.

• Additional technologies— Technologies, in addition to the login

technology, for which user authentication should be done once access

to the local system is granted.