Overview
Kerberos Products and GSS-API on HP-UX
NOTE | On HP-UX 11i v3, the KRB5-Client libraries are based on MIT |
| Kerberos V5 1.3.5 release. These KRB5-Client libraries support the |
| DES, AES, 3DES and RC4 encryption types. |
| |
The Kerberos Client utilities are as follows:
—kinit, klist, and kdestroy to manage credentials
—kpasswd to change Kerberos passwords
—ktutil to maintain keytab file
—kvno to display the Kerberos key version number of the principals.
•Kerberos Server Version 3.12: The current version of the Kerberos server supersedes the earlier MIT-based Kerberos server (version 1.0), on HP-UX 11i.
The Kerberos Server is based on a distributed client-server architecture. It ensures secure communication in a networked environment by leveraging individual trust relationships. It then brokers that trust across enterprise-wide, distributed client-server networks.
•GSS-API: is an interface that provides a secure client-server application programming. The GSS-API also provides authentication, integrity, and confidentiality services to the calling applications.
•SIS: is the built-in support for secure Internet services such as ftp, rcp, rlogin, telnet and remsh utilities. When secure Internet services are enabled, these commands use Kerberos for authentication without sending passwords in clear text over the network.