Kerberos Server Version 3.2.
Legal Notices © Copyright 2003, 2011 Hewlett-Packard Development Company, L.P. Confidential computer software. Valid license from HP required for possession, use or copying. Consistent with FAR 12.211 and 12.212, Commercial Computer Software, Computer Software Documentation, and Technical Data for Commercial Items are licensed to the U.S. Government under vendor’s standard commercial license. The information contained herein is subject to change without notice.
Contents 1 Announcement...........................................................................................4 What's in this version................................................................................................................4 Supported encryption types...................................................................................................4 Kerberos Server version 3.2.2 benefits and features.......................................................................
1 Announcement HP Kerberos Server v3.2.2 is based on the client-server architecture. It ensures secure communication in a networked environment by leveraging individual trust relationships. It then brokers this trust across enterprise-wide distributed client-server networks. The communication between client and server is secured using the Kerberos protocol. HP Kerberos Server allows entities to authenticate themselves, without having to transmit their passwords in clear text form, over the network.
should be aware of. Proper protection of this authentication information is a critical aspect of enabling the best security that can be provided. • Scalability One of the primary benefits of the Kerberos Server is that it is highly customizable and offers the following advantages: ◦ Multiple secondary security servers that enable load balancing with automatic incremental propagation, without any performance degradation. This feature is disabled if you opt for LDAP as the backend database.
• HP Kerberos Administrator Use the Administrator to: ◦ Create and associate a principal with an LDAP DN ◦ Delete principals NOTE: When a Kerberos principal is deleted only the associated Kerberos attributes are deleted. The LDAP object is not deleted. The system administrator must manually delete this LDAP object.
Table 1 Versions of Administrator and their Locations (continued) Administrator Name Local or Remote? Absolute Path Name kadmin_ui Remote administrator can be installed on secondary security servers and clients to permit remote administration of the principal database. This is a GUI-based administrator. /opt/krb5/bin/kadmin_ui kadmin Remote administrator can be installed on secondary security servers and clients to permit remote administration of the principal database.
Defect fixes The following defects are fixed in Kerberos Client Version 3.2.2: • QXCR1001015514: kdcd fails to start up at boot intermittently Symptom kdcd (1m) fails intermittently to start at boot. Defect description Improper shutdown of kdcd (1m) leaves a residual kdcd.pid file which causes the kdcd (1m) startup to fail. Resolution This issue is fixed.
No workaround is available. The command is supported in the IPv4 environment only. Compatibility information and installation requirements Installation Requirements Before you install the server, HP recommends that you: • Ensure that you have the HP-UX 11i v3 operating system installed on your system. You can check the version of the HP-UX operating system by using the uname -r command. • Ensure that the Kerberos Server is installed on a system that is physically secure and has restricted access to it.
2. Type: swinstall For more information on this command, see the swinstall(1m) manpage. 3. 4. 5. 6. 7. Select the appropriate path of the depot in the Specify Source window and Click OK. Highlight KerberosSvr in the Software Selection dialog box. Select Mark For Install from the Actions menu to install all filesets in the bundle. When you have marked the product components you want to install, select ‘Install (analysis)’ from the ‘Actions’ menu.
