Managing Kerberos and Other Authentication Services in Oracle® Solaris 11.2

Exit Print View

Updated: August 2014

Kerberos Network Programs

Note -  In this Oracle Solaris release, all remote login commands except ssh are deprecated. If you want to use one of the following deprecated commands to reach an older system, you can do so. If you want to use a deprecated command on this system because the command is used in a legacy script, you must enable the SMF service for that command, as in svcadm enable login:rlogin. Alternatively, you can alter the scripts to use the ssh command. Similarly, for an older system to reach this system with a deprecated command, the service for the command must be enabled on this system.

Deprecated commands such as telnet can require weak encryption keys. These keys are not allowed by default in the krb5.conf file. For more information, see Supported Encryption Types in Kerberos and the krb5.conf(4) man page.

For more information, see Controlling Access to Machine Resources in Securing Systems and Attached Devices in Oracle Solaris 11.2 . See also the man pages that are listed in Kerberos User Commands.

    The Kerberos-based (“Kerberized”) commands available to users are the following:

  • ftp

  • rcp, rlogin, rsh

  • ssh, scp, sftp

  • telnet

These applications are the same as the Oracle Solaris application of the same name. However, they have been extended to use Kerberos principals to authenticate transactions, thereby providing Kerberos-based security. For information about principals, see Kerberos Principals.

These commands are discussed further in Kerberos User Commands.