HP UX Kerberos Data Security Software manual 67

Introduction to the Kerberos Products and GSS-API

HP Kerberos Server

Choice of C-Tree or LDAP Database

Kerberos server version 3.12 allows you to use a C-Tree or an LDAP database as the backend database. By integrating the Kerberos principals with the corresponding users in the LDAP directory, you store data in a common repository. For more information, see Kerberos Server Version 3.12 Administrator’s Guide (5991-7686)on www.docs.hp.com.

Auto-Configuration Tool

An automated tool named, krbsetup, has been provided to auto-configure your Kerberos Server. Using this tool, you can configure, unconfigure, start, and stop the kdcd and the kadmind daemons. This tool is installed in the following directory:

/opt/krb5/sbin

The krbsetup tool automatically creates your configuration files, krb.conf and krb.realms, kpropd.ini files and places them in the /opt/krb5 directory. The sections in the configuration files is set to its default values. If you want to customize these sections, you must manually edit the configuration files and restart the kdcd and kadmind daemons using this tool.

You can also use the krbsetup tool to configure your secondary security servers.