User guide

ManualsBrandsRaritan ManualsComputer equipmentDOMINION SX -

221

222

223

224

225

226

227

228

229

230

Security Commands

208

DiagnosticTips:

• UsethenamecommandinthenetworkmenutosettheFQDNfor

DSX.

• DisableHTTPredirectfromtheservicesmenu.

• Synchronizethetimeoftheclientmachine.DSXmachine,KDCand

kadmindmachinesusingtimemenuandntpoption.

• Theabove3machinesshouldbepi

ngablebyFQD

N.Getthehostsfile

usinggethostnamefilefromtheKerberosmenu.

• Useklisttochecktheticketexpiration.

Mostofthekadminerrormessagesareassociatedwithticket

expiration

• Kadmin:‐Listprincipalandaddmissingprincipalifitdoesnʹt

alreadyexistintheKDCdatabase.

• Browserrule:Donotincl

detheREALMpartwhenthebrowser

promptsforprincipal.

• Telnetaccess:Use‐x‐land‐koptionappropriately.Telnetwill

initiallyprintthatauthentication

KeyandDefinitions:

1. ForKDC,Kadmind,theapplicationserverandclientmachine,refer

to:theMITKe

rberosFAQ

[http://www.cmf.nrl.nav

y.mil/CCS/people/kenh/kerberos‐faq.html]

2. FQDN:FullyQualifiedDomainName

Note:InformationaboutsettingupKDCkadmindisnotinthescopeof

thisdocument.Usethereferencesmentionedinthissectionforthis

information.

Kerberos Command Example

1. admin>Security>Kerberos>getkrbconfigip192.168.52.197login

vijaypasswordvijayvpath/home/vijay/krb5.conf

Success

2. kadmin:addprinchost/dsx‐182.domain.com@REALM

kadmin:addprincHTTP/dsx‐182.raritan.com@RARITAN.COM

Loginsettings Commands

Theloginsettingscommandmenuprovidesaccesstothecommandsused

toconfigurethesystemwideloginsettings.Theloginsettingscommands

arelistedinthetablebelow.