Configuring HP DCE Cells
Configuring Cells Using dce_config
3.dce_config prompts for a name for the security replica. Enter whatever name you wish:
Enter the Security Replica name (without subsys/dce/sec): sec_rep_node
S:****** Modifying acls on /.:/sec/replist…
S:****** Modifying acls on /.:/subsys/dce/sec…
S:****** Modifying acls on /.:/sec…
S:****** Modifying acls on /.: …
S:****** Modifying acls
4.dce_config prompts for a key seed; enter any sequence of characters:
Enter keyseed for initial database master key:
| Configuring the DCE Audit Service |
| At HP DCE 1.4.2, the dce_config utility automatically enabled audit |
| filtering by setting DCEAUDITFILTERON before starting any DCE |
| servers; in addition, when you invoke the “Auditing” command from the |
| dce_config “Additional Server Configuration” menu, dce_config |
| specifies a set of default audit filters before starting auditd, the audit |
| daemon. You can use the dcecp audfilter command to delete or modify |
| these default filters, or to create new filters. See the |
| page for more information on how to do this. |
| If you want to enable auditing, you must explicitly start the audit |
NOTE | |
| daemon by selecting 9 (Auditing) from the dce_config “Additional |
| Server Configuration” menu. Not starting the audit daemon is |
| functionally equivalent to setting DCEAUDITOFF, effectively disabling |
| auditing. |
| If you want to disable auditing completely, set the DCEAUDITOFF |
| |
| environment variable to 1 on each node where you intend to run a DCE |
| server before starting the cell’s servers. |
Planning and Configuring HP DCE 1.7 |