Tripp Lite B092-016 - Authentication Testing; Idle Timeout; Kerberos Authentication

To Next Page

To Previous Page

143

Chapter 9: Authentication

9.1.9 Idle timeout

Youcanspecifyamountoftimeinminutestheconsoleserverwaitsbeforeitterminatesanidlessh,pmshellorwebconnection.

• SelectSerialandNetwork:Authentication

• WebManagementSessionTimeoutspeciesthebrowserconsolesessionidletimeoutinminutes.Thedefaultsettingis

20 minutes

• CLIManagementSessionTimeoutspeciesthesshconsolesessionidletimeoutinminutes.Thedefaultsettingisto

never expire

• ConsoleServerSessionTimeoutspeciesthepmshellserialconsoleserversessionidletimeoutinminutes.Thedefault

setting is to never expire

9.1.10 Kerberos authentication

TheKerberosauthenticationcanbeusedwithUNIXandWindows(ActiveDirectory)Kerberosservers.Thisformofauthentication

doesnotprovidegroupinformation,soalocaluserwiththesameusernamemustbecreated,andpermissionsset.

Note: Kerberos is very sensitive to time differences between the Key Distribution Center (KDC) authentication server and the

client device. Please make sure that NTP is enabled, and the time zone is set correctly on the console server.

WhenauthenticatingagainstActiveDirectory,theKerberosRealmwillbethedomainname,andtheMasterKDCwillbethe

address of the primary domain controller.

9.1.11 Authentication testing

The Authentication Testing tab enables the connection to the remote authentication server to be tested.

Other manuals for Tripp Lite B092-016