About HP DCE/9000 Version 1.7

Interoperability and Compatibility

When configuring either a security server or client, dce_config checks the file /etc/resolv.conf for the Internet domain name. If the domain name is not found in this file, then the user is prompted to enter a domain name.

Before running dce_config, you can choose to set the environment variable DOMAIN_NAME to provide the domain name during configuration. Other environment variables used by dce_config are described in the section “Component Scripts and Environment Variables for dce_config” in Chapter 5.

An example of a standard domain name is ch.apollo.hp.com.

A DCE principal name takes the form:

/.../cellname/host/fully_qualified_hostname

Configuration for secure remote utilities may require the additional step of adding entries to inetd.conf.

Remote Services File

The following describes the service and port settings in /etc/services for the different versions of Kerberos. Kerberos V5 Release 1.0 expects the service "kerberos" to use port 88. However, older versions of Kerberos (V4) expect the "kerberos" service to use port 750. For this reason, dce_config does not set/reset the service "kerberos" in /etc/services. dce_config does set the following in /etc/services:

kerberos5

88

udp

kdc

for

V5

Beta 5-7 applications

kerberos-sec

88

udp

kdc

for

V5

Release 1.0 applications

If a customer has an environment where they are supporting different versions of Kerberos clients, they can set the port number for V5 Release

1.0clients explicitly in the [realms] section of the /etc/krb5.conf file: kdc = host:88

For related and more detailed information, see the whitepaper Using HP DCE 9000 Security with Kerberos Applications in /opt/dce/newconfig/RelNotes/krbWhitePaper.ps.

Support for Secure Internet Services

The DCE KDC is used by the Secure Internet Services, also known as the Secure Remote Utilities, that are shipped as part of the InternetSrvcs product on HP-UX 11.0. The kerberized utilities include rlogin,

1-14

Planning and Configuring HP DCE 1.7

Page 27 Page 29
Page 28
Image 28
HP UX DCE Software manual Support for Secure Internet Services, Remote Services File
Page 27 Page 29

UX DCE Software specifications

HP UX DCE Software, or Hewlett-Packard UNIX Distributed Computing Environment, represents a significant tool in the realm of distributed system architecture. Designed primarily for enterprise environments, HP UX DCE enhances the reliability, scalability, and manageability of applications over diverse networked systems.

One of the main features of HP UX DCE is its ability to integrate various computing platforms, enabling seamless communication and resource sharing across distributed nodes. This facilitates the creation of complex applications that can operate on a multitude of systems, thus enhancing operational flexibility. DCE employs standardized interfaces, which means applications written for one platform can run on any other platform that supports DCE, promoting cross-platform compatibility.

In terms of technologies, HP UX DCE utilizes Remote Procedure Calls (RPC) as a core feature. This mechanism allows different applications to communicate and invoke procedures on remote systems as if they were local calls. Additionally, DCE includes a robust security model that incorporates Kerberos for authentication, ensuring that communication between nodes remains secure and protected against unauthorized access.

Another significant characteristic of HP UX DCE is its distributed file system, which allows for transparent file access across different machines. The DCE File System (DFS) provides a unified namespace and manages data replication and consistency across distributed storage resources. This reduces the complexity of data management and enhances data availability.

HP UX DCE also supports a variety of programming languages, making it accessible for developers accustomed to different coding environments. This versatility encourages widespread adoption and innovation, as developers can leverage existing skills to create distributed applications.

Furthermore, HP UX DCE is built for high availability, ensuring that critical applications remain responsive even in the face of hardware or network failures. Its inherent component redundancy and fault-tolerant architecture are designed to minimize downtime, which is essential for mission-critical applications in enterprise scenarios.

In conclusion, HP UX DCE Software provides a comprehensive framework for developing, deploying, and managing distributed applications. Its core features such as RPC support, a secure authentication mechanism, a robust file system, and cross-platform compatibility make it a vital resource for organizations aiming to leverage distributed computing effectively. As enterprises evolve, HP UX DCE stands out as an influential solution in the dynamic landscape of distributed environments.
Top Page Image Contents