friedkiwi/ibm-information-center
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
14ed2849c6
ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzahl_5.4.0.1/rzahlkrbv5auth.htm

65 lines
4.2 KiB
HTML
Raw Blame History

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en-US" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="dc.language" scheme="rfc1766" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<meta name="dc.date" scheme="iso8601" content="2005-09-06" />
<meta name="copyright" content="(C) Copyright IBM Corporation 1998, 2006" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow"/>
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<title>iSeries NetServer support for Kerberos v5 authentication</title>
<link rel="stylesheet" type="text/css" href="ibmidwb.css" />
<link rel="stylesheet" type="text/css" href="ic.css" />
</head>
<body>
<a id="Top_Of_Page" name="Top_Of_Page"></a><!-- Java sync-link -->
<script language = "Javascript" src = "../rzahg/synch.js" type="text/javascript"></script>
<a name="krbv5auth"></a>
<h2 id="krbv5auth">iSeries NetServer support for Kerberos v5 authentication</h2>
<p>iSeries NetServer&trade; supports using Kerberos Version 5 (v5) for user authentication.
In order to enable iSeries NetServer support for Kerberos v5 authentication, you must
first have the <a href="rzahlkrbinstlsecopt.htm#instlsecoptn">iSeries Navigator Security option</a>, <a href="../rzakh/rzakh000.htm" target="_blank">Network authentication service</a>, and <a href="../rzalv/rzalvmst.htm" target="_blank">Enterprise Identity Mapping (EIM)</a> configured on the iSeries server.</p>
<p><span class="bold">Enable support for Kerberos v5 authentication</span></p>
<p>You are strongly encouraged to use the iSeries NetServer configuration
wizard to enable support for Kerberos v5. The configuration wizard helps
you configure the necessary services required for use with Kerberos v5. See <a href="rzahlkrbntsvwizard.htm#netwiz">iSeries NetServer configuration wizard</a> for instructions on how to start the iSeries NetServer configuration
wizard.</p>
<p>You may enable iSeries NetServer support for Kerberos v5 authentication
through iSeries NetServer properties. However, you must also complete the <a href="rzahlkrbcfgreqs.htm#krbcfgreq">Additional configuration requirements for Kerberos v5 authentication
enablement</a>.</p>
<p><span class="bold">If you fail to complete all of the configuration requirements,
you will be unable to use iSeries NetServer once you restart the server.</span></p>
<ol type="1">
<li>In iSeries Navigator, expand <span class="bold">Network</span>> <span class="bold">Servers</span>> <span class="bold">TCP/IP</span>.</li>
<li>Right-click <span class="bold">iSeries NetServer</span> and select <span class="bold">Properties</span>.</li>
<li>On the <span class="bold">Security</span> tab, click the <span class="bold">Next Start</span> button.</li>
<li>On the <span class="bold">Security Next Start</span> dialog box,
select one of the following authentication methods:
<ul>
<li>If you select <span class="bold">Passwords/Network authentication</span>,
clients that do not support Kerberos or clients that do support Kerberos but
are not currently participating in a Kerberos realm, use encrypted passwords
to authenticate.</li>
<li>If you select <span class="bold">Network authentication</span>, all clients
must use Kerberos to authenticate with the server. Therefore, only clients
that support Kerberos v5 can connect to iSeries NetServer once this support is enabled.
The following Windows clients do not support Kerberos v5:
<ul>
<li>Windows 95</li>
<li>Windows 98</li>
<li>Windows NT</li>
<li>Windows Me</li></ul></li></ul></li>
<li>Click <span class="bold">OK</span>.</li></ol>
<a id="Bot_Of_Page" name="Bot_Of_Page"></a>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink