OSF DCE Administration Guide--Core Components
OSF DCE Administration Guide—Core Components
as follows:
pwd_val_type Specifies password creation options for the principal as
follows:
0 (NONE) Specifies that the principal’s password is
subject only to DCE standard policy. (See Chapter
35 for a description of DCE standard policy.)
Specifying 0 (NONE) is equivalent to not
attaching an ERA instance to the principal.
1 (USER_SELECT) Specifies that the principal
must supply password text as input to the password
management server specified in the
pwd_mgmt_binding ERA.
2 (USER_CAN_SELECT) Specifies that the
principal can either supply password text or
specify that the password management server
specified in the pwd_mgmt_binding ERA generate
a password.
3 (GENERATION_REQUIRED) Specifies that the
password management server specified in the
pwd_mgmt_binding ERA should generate a
password for the principal.
pwd_mgmt_binding Specify a binding to your cell’s password management
server.
The following is an example of a dcecp command to create a principal and attach
pwd_val_type and pwd_mgmt_binding ERAs:
dcecp> principal create smitty -attribute {{pwd_val_type 2} \
{pwd_mgmt_binding \
{dce /.:/pwd_strength pktprivacy secret name} \
{/.:/pwd_mgmt/pwd_strength}}}}
For further information on how to use dcecp to attach ERAs to principals, see Chapter
32. For information on requesting generated passwords when changing a password, see
Section 30.6.3.2.
For information on configuring a password management server, see the following
section and the .
30.6.3.1 Managing a Password Management Server
Part 2 of the explains how to use dce_config to configure a password management
server. This section provides additional notes on password management server
management.
30 − 12 Tandem Computers Incorporated 124243