After the Management Central servers all have been restarted, you
need to add the central system's Kerberos service principal to the trusted
group file for each of the endpoint systems. From the central system, run
a remote command, such as DSPLIBL (Display Library List), to all the endpoint
systems. Each endpoint system automatically adds the central system's Kerberos
service principal to its individual trusted group file because
Add
to trusted group is selected as the authentication level on each
endpoint system. You can run any remote command from the central system to
an endpoint system to cause the Management Central server job on the endpoint
system to record the necessary Kerberos service principals in the trusted
group file. The DSPLIBL (Display Library List) command is used for example
purposes only.
Note: If you use a model or source system to run tasks, such
as Send Fixes, Send Users, Synchronize Time, you should run these tasks so
that the correct Kerberos service principals are added to the correct trusted
group files.
For this scenario, you decide to run a remote command
to all the endpoint systems to add the Kerberos service principal to the trusted
group file on each endpoint system. To run a remote command, follow these
steps: