Manualshelf

Configuration Guide for Kerberos Client Products on HP-UX

ManualsBrandsHP ManualsSoftwareHP-UX Kerberos Data Security Software
51525354555657585960
Introduction to the Kerberos Products and GSS-API
Secure Internet Services
Chapter 252
Secure Internet Services
If you want to authenticate users on remote systems without sending the
password in clear text over the network, you can use the built-in support
that HP provides for the following secure Internet services applications:
ftp
rcp
rlogin
telnet
remsh
In Figure 2-3, SIS invokes the libsis.sl library. When SIS is enabled
at the application client, the password is not sent to the application
server. Instead, SIS uses an encrypted ticket each time the user requests
a remote service.
Figure 2-3 SIS uses Kerberos Client Library Directly
As shown in Figure 2-2:
1. The application client requests for credentials from the KDC
2. The application client obtains credentials for the remote host (the
application server)
KDC
Server
libsis.sl
libsis.sl
Application
Server
Application
Client
1
2
3
4
5
6