Planning and Configuring HP-UX DCE 2.0
HP-UX Integrated Login
Overview
Chapter 780
Overview
HP-UX Integrated Login combines UNIX login with other authentication
technologies. It provides a generic interface which login applications can
use to interface with various user-authentication technologies.
NOTE Connection initiated via Secure Internet Services (SIS) will not result in
DCE credentials on the server.
This release offers the following authentication technologies:
• UNIX mechanism (/etc/passwd)
• DCE Security Services
On a system using HP-UX Integrated Login, the authentication
technology is configured by a system administrator. The configuration
chosen is known as the "authentication policy" and all Integrated Login
utilities on the system enforce that policy. An authentication policy
specifies the following:
• The login technology- The preferred user-authentication technology
for granting access to the local system.
• The fallback technology- The backup authentication technology,
which is used when the preferred login technology is unavailable or
fails.
• Additional technologies- Technologies, in addition to the login
technology, for which user authentication should be done once access
to the local system is granted.
HP-UX Integrated Login allows system administrators to utilize
authentication technologies other than the traditional UNIX scheme
(/etc/passwd) to better secure their machines. It also provides
flexibility, as system administrators can vary the configurations of
machines depending on desired levels of security. As an example,
consider a DCE cell. One system in the cell might be configured to grant
system access using the traditional UNIX mechanism, and then obtain