1. Manuals
  2. Brands
  3. IBM Manuals
  4. Gateway
  5. NFS/DFS Secure Gateway
  6. Reference manual

IBM NFS/DFS Secure Gateway Reference Manual page 18

Ibm nfs/dfs secure gateway guide and reference
Hide thumbs
Table of Contents

Advertisement

3. Grant the group subsys/dce/dfs-admin the appropriate permissions on
4. Use the su command to become the local superuser root on the machine:
5. Add a server key for the hosts/hostname/dfs-server principal to the
6. Remove the BosConfig file and any administrative lists that possibly exist
7. Start the bosserver process with DFS authorization checking disabled.
8. Add the group subsys/dce/dfs-admin to the admin.bos file:
9. Enable DFS authorization checking by the BOS Server:
10. Configure the bosserver process to start automatically when the system is
The BOS Server is now fully configured on the machine.
8
DFS for Solaris: NFS/DFS Secure Gateway Guide and Reference
dcecp
principal create hosts/hostname/dfs-server
account create hosts/hostname/dfs-server -group subsys/dce/dfs-admin
-org none -password password mypwd password
the ACL for the hosts/hostname/dfs-server principal in the registry
database:
acl mod /.:/sec/principal/hosts/hostname/dfs-server
-add {group subsys/dce/dfs-admin rcDnfmag}
exit
su
root_password
/krb5/v5srvtab keytab file on the machine. The dced process recognizes
the keytab file by the entry name self. The command creates the keytab
file if the file does not already exist. In the commands, password is the
password of the DCE identity to which you were authenticated when
you created the principal.
dcecp
keytab add self -member hosts/hostname dfs-server -key password
keytab add self -member hosts/hostname dfs-server -random -registry
exit
from a previous configuration of the BOS Server on the machine:
rm -f dcelocal/var/dfs/BosConfig
rm -f dcelocal/var/dfs/admin.*
The process creates a new BosConfig file and a new admin.bos file,
which is the administrative list for the BOS Server.
dcelocal/bin/bosserver -noauth &
dcelocal/bin/bos addadmin -server /.:/hosts/hostname -adminlist admin.bos
-group subsys/dce/dfs-admin
dcelocal/bin/bos setauth -server /.:/hosts/hostname -authchecking on
restarted by removing the two number signs (#) from the following line
of the /etc/rc.dfs file (or its equivalent):

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the NFS/DFS Secure Gateway and is the answer not in the manual?

Questions and answers

Related Manuals for IBM NFS/DFS Secure Gateway

Related Products for IBM NFS/DFS Secure Gateway

This manual is also suitable for:

DfsNfs

Table of Contents