Connecting two authentication servers

System Administrator Guide for Virtual Storage Platform E Series

Version
93-07-0x
Audience
anonymous
Part Number
MK-97HM85028-18

Two authentication servers can be connected to a storage system. When the servers are connected, the server configurations must be the same, except for the IP address and the port.

If you search for a server using information registered in the SRV records in the DNS server, confirm that the following conditions are satisfied:
Note: For RADIUS servers, you cannot use the SRV records.
LDAP server conditions:
  • The environmental setting for the DNS server is completed at the LDAP server.
  • The host name, the port number, and the domain name of the LDAP server are registered in the DNS server.
Kerberos server conditions:
  • The host name, the port number, and the domain name of the Kerberos server are registered in the DNS server.

Because UDP/IP is used to access the RADIUS server, no encrypted communications are available, such as negotiations between processes. To access the RADIUS server in a secure environment, encryption in the packet level is required, such as IPsec.