HP UX Kerberos Data Security Software manual 85

Configuration

Security Policies

Security Policies

There are two files that are directly related to the security of the network in your organization. Namely,

•password policy file

•admin_acl_file

Password Policy File

This file controls password rules such as password length, number of character types, and the lifetime of a password. This file is located on each Primary and all the Secondary Security Servers.

Refer to “Password Policy File” on page 101, for more information on the Password Policy File.

admin_acl_file

The admin_acl_file lists the various administrators along with their respective administrative permissions. It also lists the principals whose attributes cannot be changed without explicit privileges. This file is located in the Primary Security Server. It must be protected with appropriate read-write privileges and must be accessible only by a root user.

Refer to “admin_acl_file” on page 95, for more information on the adding entries to the admin_acl_file and assigning administrative permissions.