Installing, Configuring and Administering the Kerberos Server V 2.0 on HP-UX 11i
Configuration
Security Policies
Chapter 5 85
Security Policies
There are two files that are directly related to the security of the network
in your organization. Namely,
• password policy file
• admin_acl_file
Password Policy File
This file controls password rules such as password length, number of
character types, and the lifetime of a password. This file is located on
each Primary and all the Secondary Security Servers.
Refer to “Password Policy File” on page 101, for more information on the
Password Policy File.
admin_acl_file
The admin_acl_file lists the various administrators along with their
respective administrative permissions. It also lists the principals whose
attributes cannot be changed without explicit privileges. This file is
located in the Primary Security Server. It must be protected with
appropriate read-write privileges and must be accessible only by a root
user.
Refer to “admin_acl_file” on page 95, for more information on the adding
entries to the admin_acl_file and assigning administrative
permissions.