Planning and Configuring HP-UX DCE 1.9
Chapter 7
HP-UX Integrated Login
Activating HP-UX Integrated Login
80
/usr/sbin/auth.adm -install -l dce -b ux
Configuration is set to log in the user upon successful password verification by DCE. If DCE is not
available, login is effected via /etc/passwd. Note that this strategy works only if the HP-UX and DCE
passwords are identical:
/usr/sbin/auth.adm -install -l ux -a dce
Configuration is set to log in the user upon successful password verification by /etc/passwd. This
configuration specifies that after machine access has been granted, a DCE login should also be performed.
3. Inspect the file /var/adm/ilogin/auth.adm.log for ERROR messages. If there are ERROR messages,
correct the error conditions and repeat step 2.
4. auth.adm performs the following actions during the activation process:
• Verifies that the policy is an acceptable one.
• Activates the login technology.
• Activates the fallback technology.
• Activates additional technologies.
• Records the configured authentication policy in a policy file, /etc/auth.conf. This file triggers the
Integrated Login utilities to enforce the authentication policy. The policy file follows a predefined
format. Do not edit this file. To change a policy on a system, reconfigure it with the new policy using
the auth.adm command.
• Saves the current version of pam.conf and creates a new version; the behavior changes as soon as the
new /etc/pam.conf has been created.
The activation process terminates with an error message when any of these steps fail. One exception to this is
the activation of additional technologies. If auth.adm fails to activate any of the additional technologies, it
continues on after issuing a warning message and removing the corresponding technology from the
authentication policy.