(file) Return to notes.txt CVS log (file) (dir) Up to [Pegasus] / pegasus / src / Executor

Diff for /pegasus/src/Executor/notes.txt between version 1.1.2.11 and 1.1.2.12

version 1.1.2.11, 2007/01/09 23:26:21 version 1.1.2.12, 2007/01/10 01:59:28
Line 4 
Line 4 
         <Pegasus/Common/Constants.h>         <Pegasus/Common/Constants.h>
  
     2.  All files but the repository are owned by root. The cimservermain     2.  All files but the repository are owned by root. The cimservermain
         process may read any of the root owned files, but it must ask the          process may read the root owned files, but it must ask the executor
         executor to modify them.          to modify them.
  
     3.  The executor gives ownership of the repository to the server user     3.  The executor gives ownership of the repository to the server user
         upon startup.         upon startup.
  
     4.  Executor checks whether Pegasus repository exists and errors out      4.  The Executor now checks whether Pegasus repository exists and errors
         if not.          out if not.
  
     5.  Cimservermain owns the local-domain socket file (/tmp/cimxml.socket).     5.  Cimservermain owns the local-domain socket file (/tmp/cimxml.socket).
  
     6.  For logging purposes, the executor uses "cimexecutor" as its syslog      6.  The executor will not start if a CIM server is already running.
   
       7.  For logging purposes, the executor uses "cimexecutor" as its syslog
         identifier.         identifier.
  
     7.  Setting up PAM authentiction (non-standalone).      8.  Setting up PAM authentiction (non-standalone).
  
         First compile with PEGASUS_PAM_AUTHENTICATION.         First compile with PEGASUS_PAM_AUTHENTICATION.
  
Line 28 
Line 30 
             % cp rpm/wbem /etc/pam.d             % cp rpm/wbem /etc/pam.d
             % chmod 0644 /etc/pam.d/wbem             % chmod 0644 /etc/pam.d/wbem
  
     8.  To build for standalone PAM authentication, compile with these:      9.  To build for standalone PAM authentication, compile with these:
  
             PEGASUS_PAM_AUTHENTICATION             PEGASUS_PAM_AUTHENTICATION
             PEGASUS_USE_PAM_STANDALONE_PROC             PEGASUS_USE_PAM_STANDALONE_PROC
  
     9.  To run cimserver to use PAM, use these configuration parameters.      10.  To run cimserver to use PAM, use these configuration parameters.
  
             enableAuthentication=true             enableAuthentication=true
  
     10. To build SSL support, compile with these.      11. To build SSL support, compile with these.
  
             OPENSSL_HOME=/usr             OPENSSL_HOME=/usr
             PEGASUS_HAS_SSL=true             PEGASUS_HAS_SSL=true
  
     11. To run cimerver to use SSL, use these configuration parameters.      12. To run cimerver to use SSL, use these configuration parameters.
  
             enableHttpsConnection=true             enableHttpsConnection=true
             enableAuthentication=true             enableAuthentication=true
             sslClientVerificationMode=optional             sslClientVerificationMode=optional
             sslTrustStoreUserName=root             sslTrustStoreUserName=root
  
     12. To add a user to cimserver.passwd, use the following format (the given      13. To add a user to cimserver.passwd, use the following format (the given
         user must be a real system user).         user must be a real system user).
  
             jsmith:AB5bZ.JX9fQzA             jsmith:AB5bZ.JX9fQzA
Line 71 
Line 73 
  
             % gcc -o mkpasswd mkpasswd.cpp -lcrypt             % gcc -o mkpasswd mkpasswd.cpp -lcrypt
  
     13. The KerberosAuthenticationHandler.h and all Kerberos authentication      14. The KerberosAuthenticationHandler.h and all Kerberos authentication
         logic is not part of the Pegasus repository.         logic is not part of the Pegasus repository.
  
     14.  The CIMExportIndicationRequestMessage comes back into the server      15.  The CIMExportIndicationRequestMessage comes back into the server
          and is delivered to an indication consumer (which must be loaded).          and is delivered to an indication consumer (which must be loaded).
  
       16. The following authentication schemes were rewritten and are now
           part of the executor.
   
               - PAM Basic Authentication
               - PAM Basic Authentication, using cimservera program.
               - Secure Local Authenticaiton
   
           The following authentication schemes still reside in cimservermain.
   
               - SSL certificate authentication
               - Secure Basic (uses cimserver.passwd file).
  

Legend:
Removed from v.1.1.2.11  
changed lines
  Added in v.1.1.2.12
No CVS admin address has been configured
 Powered by
ViewCVS 0.9.2