Kerberos authentication tasks, Initializing kerberos authentication – HP LaserJet M9040M9050 Multifunction Printer series User Manual

Page 50

Advertising
background image

Kerberos Authentication Tasks

Kerberos is a network authentication protocol. It is designed to provide secure authentication for client/
server applications by using secret keys delivered with session tickets.

Before following the steps outlined here, you must have completed the following steps:

1.

Install the Microsoft LDP tool.

2.

Discover the LDAP server.

3.

Set up LDP.

After you have performed these steps, perform the steps in the following section,

Initializing Kerberos

authentication on page 38

.

Initializing Kerberos authentication

Follow these steps to initialize Kerberos Authentication for your product.

NOTE:

Embedded Kerberos Authentication uses session tickets in the authentication process. The

session tickets are time stamped by both the Key Distribution Center (KDC) and the product. It is
essential that the stamped times are within five minutes of each other. This can be accomplished by
setting identical time on both the KDC and product.

1.

Open the HP EWS in a web browser.

2.

Select the Settings tab, and then Kerberos Authentication.

3.

Under the Accessing the Kerberos Authentication Server section, perform the following steps:

a.

Type the domain name in the Kerberos Default Realm (Domain) field. The domain name is
case-sensitive and must use only uppercase letters, for example:

TECHNICAL.MARKETING

.

b.

Type the server IP address in the Enter the Kerberos Server Hostname field, for example:

15.62.64.203

(IP address)

NOTE:

The Kerberos Server Port field fills automatically as 88.

4.

Under the Accessing the LDAP Server section, perform the following steps:

a.

Select Kerberos from the LDAP Server Bind Method drop-down menu.

b.

Click to select the Credential method you want to use.

If choosing Use Public Credentials, type in a username and password.

NOTE:

Remember how you set up the username on the LDP screen. The username is

defined within the device user DN value in the LDP trace and is not in standard Windows
domain account format. The format is often your entire e-mail address, including the @xx.xx.

38

Chapter 3 Configuring the product from the Settings screens

ENWW

Advertising
Popular Brands
Popular manuals