Contact Us Contact Us

Kerberos Server

  Software Depot
Electronic download
Frequently asked questions
Product details and specifications
Select
Overview

Kerberos Server is now available as part of the Kerberos security product family. Kerberos is a mature network authentication protocol based on the RFC 1510 (The Kerberos Network Authentication Service (V5)) specification of the Internet Engineering Task Force (IETF). It is designed to provide strong authentication for client or server applications using the shared secret key cryptography.

Features and Benefits

  • Strong Authentication: Strong authentication is the backbone of the Kerberos Server. Using the Kerberos Server, you can be assured that users, who log in to your network are who they claim to be, to access the services, databases and applications on your client-server network.
  • Scalability: The Kerberos Server can be customized to offer the following advantages:
    • Multiple secondary security servers can be configured to enable load balancing with automatic incremental propagation, without any performance degradation. This feature is disabled if you opt for LDAP as the backend database.
    • Realms can be organized according to types of users or services.
  • Dynamic Propagation: Automatically propagates incremental changes from the primary server to the associated secondary servers, thus synchronizing both the primary and the secondary servers.
  • 3DES Encryption: Provides 3DES encryption type for secret key technology. 3DES is a much stronger encryption type than the 56-bit DES encryption algorithm. You can configure your server to be either DES or 3DES.
  • Windows 2000 Interoperability: Enables cross realm authentication with Windows 2000 servers to allow you to work in a mixed platform environment.
  • Pre-threaded Concurrent Server: Includes a pool of threads to simultaneously service multiple client requests in the key distribution center, for enhanced system performance.
  • C-Tree Database: Supports configuration of the Kerberos Server with a C-Tree database as the backend database. This database uses B+ Tree algorithm.
  • LDAP database: Enables you to configure the Kerberos Server with LDAP as the backend database. By integrating the Kerberos principals with the corresponding users in the LDAP directory, you store data for mechanisms, such as UNIX and Kerberos in a common repository. This configuration is optional.
    Note: LDAP databases are supported by Kerberos Server on HP-UX 11i v2 and HP-UX 11i v3 only.
  • Multithreaded Server: Supports servicing of user requests in KDC, thus enhancing the performance of the Kerberos Server.
  • High Availability: Ensures high availability of mission critical applications. In the event of the primary server crashing or going down, the secondary server (backup) can immediately be made the primary server. This is accomplished by having the parent process always monitor the server daemon, kdcd. If the server daemon dies or crashes, the parent process automatically spawns a new server daemon. This provides for high availability in the case of mission critical applications.
  • HPE Kerberos Administrator: Enables servicing of user requests in KDC, thus enhancing the performance of the Kerberos Server.
  • IPv6 Address Support: Enables Kerberos Server configuration using IPv6 addresses. Also, clients are compatible with Kerberos Server configured in the IPv6 environment.
    Note: IPv6 addresses are supported only by Kerberos Server Version D.03.20 or later on HP-UX 11i v3.

Availability of Kerberos Server on HP-UX Operating Systems

Table 1 lists the different Web release versions of Kerberos Server available on HP-UX 11i v1, HP-UX 11i v2, and HP-UX 11i v3 operating systems.

Table 1: Latest Kerberos Server Web Release Version Numbers

Kerberos Server Version

Operating System

Kerberos Server Version C.02.10

HP-UX 11i v1

Kerberos Server Version C.03.10.02

HP-UX 11i v2

Kerberos Server Version D.03.20.02

HP-UX 11i v3

Additional Documentation: Additional information about Kerberos Server is available at the following URL:http://h20565.www2.hpe.com/hpsc/doc/public/display?docId=c03668145

Last updated

5 July, 2011

 
Additional product information
Product #: T1417AA     
Additional info
Version: C.02.10, C.03.10.02, D.03.20.02
Software specification: HP-UX 11i v1(T1417AA_B.11.11.04_HP-UX_B.11.11_32+64.depot)
HP-UX 11i v2(T1417AA_C.03.10.02_HP-UX_B.11.23_IA_PA.depot)
HP-UX 11i v3(KerberosSvr_D.03.20.02_HP-UX_B.11.31_IA_PA.depot)
Installation
Select