Managing password-less authentication with the database by using Kerberos
You can enable Kerberos authentication for secure communication between IBM® Security Guardium® Key Lifecycle Manager and the Db2® database. Kerberos authentication removes the requirement of changing the database password when the operating system password changes.
About this task
serviceuseris the name of the service to be authenticated, such as the database service. For example:
FQDN_GKLMserveris the fully qualified dns name of the host system on which the IBM Security Guardium Key Lifecycle Manager server is installed
REALMNAMEis the Kerberos realm name. A Kerberos realm is a domain or a group of systems. Kerberos has authority to authenticate a user to a service that is hosted on a computer in this domain. The REALMNAME value must be specified in uppercase characters only.
|Operating system||Script files|
|Linux and AIX||