Table of Contents
Advertisement
Service Principal Field
kservice
kinstance
REALM
For example, if
which Oracle Database is running is dbserver.someco.com and the realm is
SOMECO.COM. The principal name is:
oracle/dbserver.someco.com@SOMECO.COM
It is a convention to use the DNS domain name as the name of the realm. To create
the
user, by using the following syntax:
# cd /kerberos-install-directory/sbin
# ./kadmin.local
To add a
list of server principals known by Kerberos, enter the following:
kadmin.local:addprinc -randkey oracle/dbserver.someco.com@SOMECO.COM
Task 3: Extract a Service Table from Kerberos
Extract the
server/Kerberos client system.
For example, use the following steps to extract a service table for
dbserver.someco.com:
The utility names in this section are executable programs.
Note:
However, the Kerberos user name krbuser and the realm
SOMECO.COM are examples only.
kservice
service
principal, run
principal
named oracle/dbserver.someco.com@SOMECO.COM to the
service table
Description
A case-sensitive string that represents the Oracle
service; this can be the same as the database service
name.
This is typically the fully qualified name of the
system on which Oracle Database is running.
The domain name of the database server. REALM
must always be uppercase and is typically the DNS
domain name.
is oracle, the fully qualified name of the system on
. On UNIX, run this command as the root
kadmin.local
from Kerberos and copy it to the Oracle database
Enabling Kerberos Authentication
Configuring Kerberos Authentication 6-3
Advertisement
Chapters
Table of Contents
Troubleshooting
Need help?
Do you have a question about the Oracle Database B10772-01 and is the answer not in the manual?
Questions and answers