Filter
Top Products
System Management Release Notes
4.13 External Authentication
4.13.2 Integrity servers External Authentication Support
V8.2
The Advanced Server for OpenVMS V7.3A ECO4 (and later) product kit contains
standalone external authentication software for Integrity servers in an OpenVMS
cluster.
If you want to enable NT LAN Manager external authentication on OpenVMS
Cluster member nodes running Integrity servers, you must copy the Integrity
servers standalone external authentication images from an Alpha system on
which the Advanced Server is installed to the Integrity servers member node, and
complete the setup as described in the Advanced Server kit release notes.
4.13.3 SET PASSWORD Behavior Within a DECterm Terminal Session
V7.2
A DECterm terminal session does not have access to the external user name
used for login and must prompt for one during SET PASSWORD operations. The
external user name defaults to the process’s OpenVMS user name. If the default
is not appropriate (that is, if the external user name and mapped OpenVMS user
name are different), you must enter the correct external user name.
The following example shows a SET PASSWORD operation initiated by a user
with the external user name JOHN_DOE. The mapped OpenVMS user name is
JOHNDOE and is the default used by the SET PASSWORD operation. In this
case, the default is incorrect and the actual external user name was specified by
the user.
$ set password
External user name not known; Specify one (Y/N)[Y]? Y
External user name [JOHNDOE]: JOHN_DOE
Old password:
New password:
Verification:
%SET-I-SNDEXTAUTH, Sending password request to external authenticator
%SET-I-TRYPWDSYNCH, Attempting password synchronization
$
4.13.4 No Password Expiration Notification on Workstations
V7.1
In the LAN Manager domain, a user cannot log in once a password expires.
PC users receive notification of impending external user password expiration and
can change passwords before they expire. However, when a user logs in from an
OpenVMS workstation using external authentication, the login process cannot
determine whether the external password is about to expire. Therefore, sites that
enforce password expiration and whose users do not primarily use PCs can choose
not to use external authentication for workstation users.
4.13.5 Restriction in ACME_SERVER Process (Integrity servers only)
The SET SERVER ACME/CONFIG=THREAD_MAX command is ignored on
Integrity servers for this release because only one worker thread is active.
System Management Release Notes 4–13