Manualshelf

Planning and Configuring HP-UX DCE 2.0

ManualsBrandsHP ManualsSoftwareHP-UX DCE Software
81828384858687888990
HP-UX Integrated Login
Activating HP-UX Integrated Login
Chapter 7 85
-p tech_name:param=value[:param=value] specifies the values of
parameters applicable to an authentication technology being
configured. Parameters of different technologies can be specified by
repeating the -p[arameter] option. The list of configurable
parameters is as follows:
TIMEOUT Time-out (in seconds) on communications with
authentication technology. Default values are:
u-120 seconds dce120 seconds
WARNPWDEXP Password expiration warning period (in days). If the
user's password is due to expire within the specified number of days,
the user receives a warning message during login. This parameter
applies to DCE technology only. If this parameter is not specified, no
warning is given.
FORCEPWDCHANGE Password force-change period (in days). If the
user's password is due to expire within the specified number of days,
the user is forced to change the password before login is allowed.
This parameter applies to the DCE technology only. If this parameter
is not specified, a password change is not forced.
FORWARDABLETGT Enable DCE TGT to be forwardable. When
forwarding a user's DCE TGT from machine A to machine B, it
enables the user from machine A to reuse its Kerberos credentials on
machine B. A parameter value is required, but its content is ignored.
This parameter applies to DCE technology only.
Default values are used when no parameter values are specified.
The following example commands activate HP-UX Integrated Login
and set the configuration as described:
/usr/sbin/auth.adm -install -l dce -b ux
Configuration is set to log in the user upon successful password
verification by DCE. If DCE is not available, login is effected via
/etc/passwd. Note that this strategy works only if the HP-UX and
DCE passwords are identical:
/usr/sbin/auth.adm -install -l ux -a dce
Configuration is set to log in the user upon successful password
verification by /etc/passwd. This configuration specifies that after
machine access has been granted, a DCE login should also be
performed.