Kerberos Server Version 3.0 Release Notes HP-UX 11i v2 September 2004 Edition 2 Manufacturing Part Number: T1417-90008 E0904 U.S.A. © Copyright 2004 Hewlett-Packard Development Company L. P. All Rights Reserved.
Legal Notices The information in this document is subject to change without notice. Hewlett-Packard makes no warranty of any kind with regard to this manual, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose. Hewlett-Packard shall not be held liable for errors contained herein or direct, indirect, special, incidental or consequential damages in connection with the furnishing, performance, or use of this material. Warranty.
© Copyright 1991-2002 Mentat Inc. © Copyright 1996 Morning Star Technologies Inc. © Copyright 1996 Progressive Systems, Inc. © Copyright 1991-2000 Isogon Corporation, All Rights Reserved. © Copyright 1996 OpenVision Technologies, Inc., All Rights Reserved Trademark Notices UNIX is a registered trademark in the United States and other countries, licensed exclusively through The Open Group. X Window System is a trademark of the Massachusetts Institute of Technology. MS-DOS and Microsoft are U.S.
1 HP’s Kerberos Server V 3.
HP’s Kerberos Server V 3.0 Release Notes Announcement Announcement HP’s Kerberos Server V 3.0, product number T1417AA is based on the client-server architecture. It ensures secure communication in a networked environment by leveraging individual trust relationships. It then brokers this trust across enterprise-wide distributed client-server networks. NOTE Kerberos Server Version 2.0 is released on the HP-UX 11i v2 operating system as Kerberos Server Version 3.0, with few enhancements.
HP’s Kerberos Server V 3.0 Release Notes What’s in This Version What’s in This Version The following new features are added in Kerberos Server Version 3.0: • In Kerberos Server Version 2.x, the password policy was based on the instance name to which the principal was belonging to. Starting from Kerberos Server Version 3.0, the password policy is not based on the instance name but is based on the policy to which the principal is subscribed to.
HP’s Kerberos Server V 3.0 Release Notes Kerberos Server Version 3.0 Benefits and Features Kerberos Server Version 3.0 Benefits and Features The Kerberos Server is primarily a centralized network authentication system providing security solutions to geographically dispersed organizations. Listed below are some of the key features in Kerberos Server V 3.0.
HP’s Kerberos Server V 3.0 Release Notes Kerberos Server Version 3.0 Benefits and Features • Dynamic Propagation This facility has been provided to automatically propagate incremental changes from the Primary server to the associated Secondary servers, thus synchronizing both the Primary and the Secondary servers. • 3DES Encryption This version provides 3DES encryption type for secret key technology. 3DES is a much stronger encryption type than the 56 bit DES encryption algorithm.
HP’s Kerberos Server V 3.0 Release Notes Kerberos Server Version 3.0 Benefits and Features — Assign administrative permissions — Modify the default group principals — Extract principals to service key table files — Reset password of principals There are two different versions of the Administrator, namely — kadminl_ui - the local administrator — kadmin_ui - the remote administrator The local administrator, kadminl_ui, is available only on the primary server.
HP’s Kerberos Server V 3.0 Release Notes Kerberos Server Version 3.0 Benefits and Features Migrating from Previous Versions of Kerberos Server The Kerberos Server database migration tool, kdb_migrate, enables you to migrate from Kerberos database Version 1.0 to Version 3.0. To migrate from the Kerberos Server Version 2.0 database to Version 3.0, dump the Version 2.0 database using the kdb_dump utility, and load this dump file into the Version 3.0 database using the kbd_load utility.
HP’s Kerberos Server V 3.0 Release Notes Known Problems and Workarounds Known Problems and Workarounds • On an IPv6 configured machine, if the IPv6 interface is up and running, kadmind will not function as expected.
HP’s Kerberos Server V 3.0 Release Notes Compatibility Information and Installation Requirements Compatibility Information and Installation Requirements Pre-Installation Requirements Before you install the server, it is recommended that you: • Ensure that you have the HP-UX 11i v2 operating system installed on your system. You can check the version of the HP-UX operating system by using the uname -r command.
HP’s Kerberos Server V 3.0 Release Notes Compatibility Information and Installation Requirements Other Requirements KRB5-Client Software and PAM Kerberos. On the HP-UX 11i operating system these products were shipped as part of core operating system. Disk Space Required To Install This product requires 12 Mbytes of disk space Install With System Up or Down Install this product with the system up. The system does not need to be rebooted after the product has been installed.
HP’s Kerberos Server V 3.0 Release Notes Compatibility Information and Installation Requirements If the installation is not successful, an error message is displayed. The cause of the failure will appear at the end of the /var/adm/sw/swagent.log file. NOTE Chapter 1 The Software Distributor is documented in Managing HP-UX Software with SD-UX.
HP’s Kerberos Server V 3.0 Release Notes Software Availability in Native Languages Software Availability in Native Languages There is no information in non-English languages for this version of Kerberos Server V 3.0.
