9 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
I want to configure and run sshd server on my unix box. I already have that installed.
# yum -y install openssh-server openssh-clients
Loaded plugins: fastestmirror, presto, refresh-packagekit
Loading mirror speeds from cached hostfile
* base: centos.mirror.constant.com
* epel:... (1 Reply)
Discussion started by: nitalchandel
1 Replies
2. IP Networking
I have customer who controls access to the internet via TACACS server, basically a PIX firewall uses authentication from the TACACS to say if traffic is allowed to pass out of the gateway. I can't find anything on how to configure a linux client of TACACS authentication only how to set up a linux... (1 Reply)
Discussion started by: metallica1973
1 Replies
3. Cybersecurity
Can someone please posts the steps needed to configure a UNIX server to authenticate with a TACACS+ server or point me in the right direction been googling for 2 days now. Thanks (1 Reply)
Discussion started by: supadee718
1 Replies
4. BSD
Can someone please posts the steps needed to configure a UNIX server to authenticate with a TACACS+ server or point me in the right direction been googling for 2 days now. Thanks (0 Replies)
Discussion started by: supadee718
0 Replies
5. UNIX for Dummies Questions & Answers
Seek help configuring Sendmail 8.14.4 Unix server.
Not sure if this is the correct place to post or the Unix/Linux Forums job board. Seeking help configuring sendmail 8.14.4 on my Unix server. It appears I have an open relay. I was advised I need to modify a etc/mail/dir , a command line entry... (0 Replies)
Discussion started by: raecampus
0 Replies
6. Shell Programming and Scripting
At times I find the need to test that the tacacs port 49 is open.
The code below works but is painfully slow because I have to wait on the timeouts.
Examples of possible responds
router1#telnet 10.11.20.14 49
Trying 206.112.204.140, 49 ... Open
route1#telnet 10.11.19.14 49
Trying... (1 Reply)
Discussion started by: popeye
1 Replies
7. Shell Programming and Scripting
Hi
I want to create a script that will authenticate user from a file and if both of them match then only the script is allowed to be executed...
Suppose I have a script say test.sh and a file config.txt
for users whose user ids exist in the text file should only be given permission to... (1 Reply)
Discussion started by: ultimatix
1 Replies
8. UNIX for Dummies Questions & Answers
Dear all
I want to redirect the logs of the syslog of a tru64 unix machine in a log and event monitoring tool installed in another server. In the syslog.conf i have appended *.*@<server_name> at the end, where <server_name> is the name of the machine on which the reporting tool is running. I... (0 Replies)
Discussion started by: adak2010
0 Replies
9. HP-UX
Hi all,
I have installed a software on a local machine running UNIX .
Using NetBatch utility, In the COMMUNICATION file on this Local UNIX machine I have added:
remote_machine_name:OS: Description:Type
so that I can use this remote machine running UNIX to complete jobs which are... (0 Replies)
Discussion started by: molly81
0 Replies
Authen::Krb5::Simple(3pm) User Contributed Perl Documentation Authen::Krb5::Simple(3pm)
NAME
Authen::Krb5::Simple - Basic user authentication using Kerberos 5
SYNOPSIS
use Authen::Krb5::Simple;
# Create a new Authen::Krb5::Simple object using
# the system default realm.
#
my $krb = Authen::Krb5::Simple->new();
# Authenticate a user.
#
my $authen = $krb->authenticate($user, $password);
unless($authen) {
my $errmsg = $krb->errstr();
die "User: $user authentication failed: $errmsg
";
}
# Get the current default realm.
#
my $realm = $krb->realm();
# Set the current realm
#
$krb->realm('MY.NEW.REALM');
# Create a new object pointing to another realm.
#
my $alt_krb = Authen::Krb5::Simple->new(realm => 'OTHER.REALM');
...
DESCRIPTION
The "Authen::Krb5::Simple" module provides a means to authenticate a user/password using Kerberos 5 protocol. The module's authenticate
function takes a username (or user@kerberos_realm) and a password, and authenticates that user using the local Kerberos 5 installation. It
was initially created to allow perl scripts to perform authentication against a Microsoft Active Directory (AD) server configured to accept
Kerberos client requests.
It is important to note: This module only performs simple authentication. It does not get, grant, use, or retain any kerberos tickets. It
will check user credentials against the Kerberos server (as configured on the local system) each time the authenticate method is called.
CONSTRUCTOR
new
The new method creates the Authen::Krb5::Simple object. It can take an optional argument hash. At present the only recognized
argument is "realm".
If no realm is specified, the default realm for the local host will be assumed. Once set, the specified realm will be used for all
subsequent authentication calls. The realm can be changed using the realm function (see below).
Examples:
Using the default realm:
my $krb = Authen::Krb5::Simple->new();
specifying a realm:
my $krb = Authen::Krb5::Simple->new(realm => 'another.realm.net');
METHODS
authenticate($user[@realm], $password)
the authenticate method takes the user (or user@realm) and a password, and uses kerberos 5 (the local systems installation) to
authenticate the user.
if the user/password is good, authenticate will return a true value. Otherwise, a false value is returned and the error code is stored
in the object.
if($krb->authenticate($user, $pw)) {
print "$user authentication successful
";
} else {
print "$user authentication failed: ", $krb->errstr(), "
";
}
realm( )
realm(NEW.REALM)
The realm method is used to set or get the current default realm. If an argument is passed to this method, the default realm is set to
that value. If no argument is supplied, the current realm is returned.
errstr
The errstr method will return the error message from the most recent authentication call.
errcode
The errstr method will return the krb5 error code from the most recent authentication call. This value will not be very useful. Use
the errstr method to get a meaningful error message.
BUGS
This version of Authen::Krb5::Simple does not support null or empty passwords. If you pass an undefined value or empty string ('') as a
password, authenticate return false and set the error to indicate that null or empty passwords are not supported.
AUTHOR
Damien S. Stuart, <dstuart@dstuart.org>
SEE ALSO
perl, Kerberos5 documentation.
perl v5.14.2 2012-01-08 Authen::Krb5::Simple(3pm)