Manualshelf

HP XP P9000 Command View Advanced Edition Suite Software 7.6.1-00 Administrator Guide

ManualsBrandsHP ManualsSoftwareHP XP Array Manager Enterprise Media Kit
211212213214215216217218219220
The CN (in the Subject line) of the LDAP directory server certificate matches the value of the
following specified attributes in the exauth.properties file.
When the server uses LDAP for the authentication method
auth.ldap.value-specified-for-auth.server.name.host
When the server uses RADIUS for the authentication method and links with an external author-
ization server
When an external authentication server and the authorization server are running on the same
computer:
auth.radius.value-specified-for-auth.server.name.host
When the external authentication server and authorization server are running on different
computers:
auth.group.domain-name.host
When the server uses Kerberos for the authentication method and links with an external author-
ization server
auth.kerberos.value-specified-for-auth.kerberos.realm_name.kdc
When sending a request to a CRL distribution point (CDP) regarding the validity of a server certi-
ficate, if JDK 5 (1.5.0) is used, no AIA or CDP field includes a URL that starts with ldap.
Related topics
Registering an external authentication server and an external authorization server, page 126
Checking the server certificates imported into the truststore
To check the server certificates imported into the truststore (ldapcacerts, jssecacerts or
dvmcacerts), use the hcmdskeytool utility (for Windows) and the keytool utility (for Linux).
Information to collect in advance
Path of the truststore file (see Truststores on page 180)
Password to access the truststore
To check the server certificates imported into the truststore:
Execute the following command.
In Windows:
installation-folder-for-Common-Component\bin\hcmdskeytool -list -v
-keystore truststore-file-name -storepass password-to-access-the-
truststore
In Linux:
installation-directory-for-Common-Component/jdk/bin/keytool -list
-v -keystore truststore-file-name -storepass password-to-access-the-
truststore
Changing the communication protocol between the Replication Manager server and the
Device Manager server
You can change the communication protocol between the Replication Manager server and the Device
Manager server in the Edit Device Manager window of the Replication Manager GUI.
Administrator Guide 219