IBM Hub/Switch Switch User Manual

Open as PDF

of 590

Chapter 6 HPSS Conﬁguration

HPSS Installation Guide September 2002 275

Release 4.5, Revision 2

Keytab Pathname The absolute pathname of

the UNIX ﬁle containing

the keytab entry that will

be used by the server when

setting up its identity.

Any legal UNIX ﬁle name

can be used as long as it is

the name of a keytable

ﬁle.

/krb5/

hpss.keytabs

Advice: The server must have read access to this ﬁle. Do not set other access

permissions on this ﬁle or your security can be breached. Notes: (1) Each server

can have its own key ﬁle, or all the servers can share a single key ﬁle. It is

recommended that one key ﬁle be used for all of the servers on any given

platform.(2) To use the standard DCE system wide key ﬁle, set this value to /krb/

v5srvtab (not recommended).

Authentication Service Arg The argument passed to

the authentication service

indicated by the

Authentication Service

conﬁguration variable and

used by the authentication

service to validate

communications.

Currently, the only

authentication services

supported are none and

dce.

NULL or any UNIX

pathname that points to a

key ﬁle.

/krb5/hpss.keytabs

Advice: If dce authentication is to be used and the Keytab Pathname is /krb/

v5srvtab, set this variable to NULL. If dce authentication is to be used and the

Keytab Pathname is not /krb/v5srvtab, set this variable to the value of Keytab

Pathname. In either case, the server must have read access to the ﬁle. Do not set

other permissions on this ﬁle or your security can bebreached. If noauthentication

is to be used, set this value to NULL.

Audit Policy. The following ﬁelds describe the server’s audit policy conﬁguration.

AUTH The Security Audit Policy

for Authentication events.

If set, security audit

messages will be sent to

the logging subsystem.

NONE- No audit

messages will be

generated.

FAILURE - Audit

messages will only be

generated when there are

errors.

ALL - Audit messages

will be generated for all

related operations.

FAILURE

Advice: Sites that must audit all login type events should set this value to ALL.

Table 6-3 Basic Server Conﬁguration Variables (Continued)

Display Field Name Description Acceptable Values

Default

Value

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

IBM Hub/Switch Switch User Manual