| Title: | DCE Product Information |
| Notice: | Kit Info - See 2.*-4.* |
| Moderator: | TUXEDO::MAZZAFERRO |
| Created: | Fri Jun 26 1992 |
| Last Modified: | Fri Jun 06 1997 |
| Last Successful Update: | Fri Jun 06 1997 |
| Number of topics: | 2269 |
| Total number of notes: | 10003 |
I am almost totally ignorant of "things DCE" but am in need of some urgent help in responding to a customer procurement/bid.... In a nutshell we are proposing a resilient UNIX cluster (6 x 8400s) distributed over 2 computer rooms using FDDI/ASE and fibre SCSI extenders/RAID techniques. The system will be running Oracle db along with Encina TP monitor using DCE. Clients will be WNT for which I will propose to use DCE again. Main workload will be mainly batch oriented processing via Encina applications with some user generated work. Now the queries...... Is it possible to create a Single Login environment for the users ? ie. WNT login passed to DCE cell login ? The customer only wants to do this once. If this is not possible as standard, can it be created using "hidden scripts" or is this a security issue (password staorage etc.) ? My understandings are that the above is possible (via Kerberos or the newer DCE Security components). However, I heard from somewhere that coordinating changes to passwords upon expiry etc. is not integrated and necessitates logging in to a server to change the DCE password and then changing the client PC one....... Or something similar. Is this true ? I also need to know if DCE Security is applied to batched Encina applications/jobs so as to control these too ? Is it the same mechanism of control ? The customer has been talking with HP so they have a view about HP's Praesidium (?) undertaking these functions. From what I read on their web pages this sounded very much what I know about DCE with Kerberos from reading about it a long time ago. One last one... How is the DCE environment managed ? Does it need monitoring etc.? Thanks for any guidance. Rog
| T.R | Title | User | Personal Name | Date | Lines |
|---|---|---|---|---|---|
| 2158.1 | DCE/NT has single sign-on | TUXEDO::dce017.lkg.dec.com::lim | Kyungae Lim, DTN 226-5318 | Mon Feb 17 1997 08:27 | 36 |
Is it possible to create a Single Login environment for the users ? ie. WNT login passed to DCE cell login ? The customer only wants to do this once. ======= Yes. Use integrated login option from dcesetup. This is turned on by default anyway. ======= My understandings are that the above is possible (via Kerberos or the newer DCE Security components). However, I heard from somewhere that coordinating changes to passwords upon expiry etc. is not integrated and necessitates logging in to a server to change the DCE password and then changing the client PC one....... Or something similar. Is this true ? ======= You can coordinate password change between NT and DCE using CTRL+ALT+DEL Change password option. NT password change will then be propagated to DCE. ======= I also need to know if DCE Security is applied to batched Encina applications/jobs so as to control these too ? Is it the same mechanism of control ? ======= It should. DCE/NT single sign-on(integrated login) provides the user DCE credentials that Encina applications require for access checking. ======= Kyungae | |||||