HP UX Kerberos Data Security Software manual 93

Administration

Administering the Kerberos Database

Administering the Kerberos Database

Once, you have installed and configured the HP-UX Kerberos Server version 2.0, the Kerberos database will contain the default Kerberos principals, their keys, and other administrative information about each of these principal’s, for your realm. For more information on installing your security server, refer to Chapter 2, “Installation,” on page 33.

The kerberos database utilities can be used to globally manage the principals and their utilities. The programs that allow you do so, are the Administrator and the Command-Line-Administrator.

The Administrator is the graphical-user-interface that can be used to manage your principals and realms. This includes both the remote, kadmin_ui, and the local, kadminl_ui, administrators. These programs have been discussed in detail, in the subsequent sections.

The Remote Administrator, kadmin, contacts the Kerberos Database - kadmind for Kerberos authentication whereas the Local Administrator, kadminl, does not require a server for authentication. The kadminl runs only on the primary server, where the Kerberos database is located.

The Kerberos daemon, kadmind, is required for Kerberos Authentication. This daemon has been discussed in the next section of this chapter, with the files required for this daemon to be up and running.