HP-UX Integrated Login

Integrating DCE with HP-UX Integrated Login

If you have set up a passwd_export cron job to update /etc/passwd with DCE Registry data, any changes you make to /etc/passwd will be lost when the cron job updates /etc/passwd.

When DCE is unavailable and HP-UX Integrated Login is configured to fall back to /etc/passwd, if /etc/passwd has been updated with information from the DCE Security Registry, and the first 8 characters of the password a user enters at login match the first 8 characters of that user’s DCE password, then the login will succeed even though the password entered may not be identical to the DCE password. The user will not, however, have DCE credentials.

If you are logged in to DCE from a foreign cell, note that you cannot use the passwd command to change your password.

The HP-UX Integrated Login utilities may not work when the system disk is full or disk quotas are exceeded. DCE requires disk space for the creation of temporary files.

DCE credentials are not automatically removed when the user logs out. The administrator can set up a cron job to remove credentials when users log out as described in “Removing DCE Credentials” in Chapter 1.

CDE requires that users have permission to write to their home directories. By default, dcecp and the Account Manager set a user’s home directory to “/”. To enable users other than root to write to their home directories, change the default home directory (“/”) to a home directory that the user can write to, such as /users/foo. Failure to take this action could prevent users from accessing the system.

Principals with a passwd_override entry (for example, root) cannot use the passwd command to change passwords in the passwd_override file. This can be done in two steps. First, use the passwd -r files command to change the password in the /etc/passwd file. Then, as root, cut and paste the appropriate password entry from /etc/passwd into passwd_override.

By default, the HP DCE 1.7 Security Server disables logins for principals whose passwords have expired, and intervention by cell_admin is required before the principal can log in. If you want to allow a principal to log in with an expired password, attach an instance of the passwd_override ERA to that principal. See the OSF DCE Administration Guide—Core Components and the

6-22

Planning and Configuring HP DCE 1.7

Page 145 Page 147
Page 146
Image 146
HP UX DCE Software manual Integrating DCE with HP-UX Integrated Login
Page 145 Page 147

UX DCE Software specifications

HP UX DCE Software, or Hewlett-Packard UNIX Distributed Computing Environment, represents a significant tool in the realm of distributed system architecture. Designed primarily for enterprise environments, HP UX DCE enhances the reliability, scalability, and manageability of applications over diverse networked systems.

One of the main features of HP UX DCE is its ability to integrate various computing platforms, enabling seamless communication and resource sharing across distributed nodes. This facilitates the creation of complex applications that can operate on a multitude of systems, thus enhancing operational flexibility. DCE employs standardized interfaces, which means applications written for one platform can run on any other platform that supports DCE, promoting cross-platform compatibility.

In terms of technologies, HP UX DCE utilizes Remote Procedure Calls (RPC) as a core feature. This mechanism allows different applications to communicate and invoke procedures on remote systems as if they were local calls. Additionally, DCE includes a robust security model that incorporates Kerberos for authentication, ensuring that communication between nodes remains secure and protected against unauthorized access.

Another significant characteristic of HP UX DCE is its distributed file system, which allows for transparent file access across different machines. The DCE File System (DFS) provides a unified namespace and manages data replication and consistency across distributed storage resources. This reduces the complexity of data management and enhances data availability.

HP UX DCE also supports a variety of programming languages, making it accessible for developers accustomed to different coding environments. This versatility encourages widespread adoption and innovation, as developers can leverage existing skills to create distributed applications.

Furthermore, HP UX DCE is built for high availability, ensuring that critical applications remain responsive even in the face of hardware or network failures. Its inherent component redundancy and fault-tolerant architecture are designed to minimize downtime, which is essential for mission-critical applications in enterprise scenarios.

In conclusion, HP UX DCE Software provides a comprehensive framework for developing, deploying, and managing distributed applications. Its core features such as RPC support, a secure authentication mechanism, a robust file system, and cross-platform compatibility make it a vital resource for organizations aiming to leverage distributed computing effectively. As enterprises evolve, HP UX DCE stands out as an influential solution in the dynamic landscape of distributed environments.
Top Page Image Contents