HP 630n HP Jetdirect Print Servers - Administrator's Guide - Page 117
Kerberos, Kerberos Settings, Identity Authentication, Con d
UPC - 808736806244
View all HP 630n manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 117 highlights
Table 5-8 Identity Authentication page (continued) Item Description To view data for a configured authentication, click View. To configure a new authentication, click Configure. Kerberos You can configure the HP Jetdirect print server for Kerberos authentication manually, or by importing configuration files. Items on the Kerberos page are described in the following table. Table 5-9 Kerberos page Item Description Manually Specify Configuration Manually configure the print server for Kerberos authentication. Click Next to display the Kerberos Settings page. Import Configuration Files Configure the print server for Kerberos authentication by importing configuration files. ● conf File Enter or browse to the krb5.conf file. In the libdefaults section, include the default_realm andclockskew tag entries. In the realms section, include the kdc tag entry. ● keytab File Enter or browse to a Kerberos keytab file. Use the Ktpass.exe command-line tool (the version prior to Windows Server 2003 Support Pack 1) to generate the keytab file. Use the principal name type KRB5_NT_PRINCIPAL, and the encryption type DES-CBC-MD5. ● Time Sync Period Specify the time interval (in minutes) that the HP Jetdirect print server requests to synchronize its clock with a simple network time protocol (SNTP) time server. ● SNTP Server Specify the FQDN or IP address of an SNTP time server, if required. By default, the SNTP server is the server used as the key distribution center (KDC). Click Next to return to the Identity Authentication page, and confirm that Kerberos status indicates that it is Configured. Kerberos Settings Use the wizard to manually configure Kerberos account settings on the print server. 1. Use the Kerberos Settings page to provide Kerberos account and configuration settings. 2. Click Next to return to the Identity Authentication page, and confirm that Kerberos status indicates Configured. Table 5-10 Kerberos Settings page Item Description KDC Server FQDN of the domain controller used as the Kerberos KDC. The FQDN consists of the device's host name and domain name. For example, kdc01.support.hp.com is a fully qualified domain name, where kdc01 is the host name and support.hp.com is the domain name. Principal Realm Kerberos principal realm in the form principal@REALM. ENWW HP Jetdirect IPsec/Firewall wizard 107