Table of Contents

Search

  1. Preface
  2. Introduction to PowerExchange
  3. DBMOVER Configuration File
  4. Netport Jobs
  5. PowerExchange Message Logs and Destination Overrides
  6. SMF Statistics Logging and Reporting
  7. PowerExchange Security
  8. Secure Sockets Layer Support
  9. PowerExchange Alternative Network Security
  10. PowerExchange Nonrelational SQL
  11. PowerExchange Globalization
  12. Using the PowerExchange ODBC Drivers
  13. PowerExchange Datatypes and Conversion Matrix
  14. Appendix A: DTL__CAPXTIMESTAMP Time Stamps
  15. Appendix B: PowerExchange Glossary

User Authentication on Linux and UNIX

User Authentication on Linux and UNIX

For PowerExchange to authenticate user credentials on Linux and UNIX systems, the operating system must use shadowed passwords.
PowerExchange reads user IDs and passwords from the /etc/passwd and /etc/shadow file. By using the crypt function, PowerExchange verifies that the passwords supplied on pwxcmd or infacmd pwx commands matches the password for the user ID.
PowerExchange authentication of user credentials does not support Linux and UNIX systems with security that is not backwardly compatible with the shadow password file and crypt function.
  1. Change the owner of pwxauth.exe to root.
  2. Change the group of pwxauth.exe to the group of the PowerExchange Listener.
  3. Set the setuid bit on pwxauth.exe.
PowerExchange provides a sample script called setup_pwxauth in the PowerExchange installation directory that makes the necessary changes to pwxauth.exe. To run this script, issue the following command:
setup_pwxauth
listener_primary_group
For the variable
listener_primary_group
, specify the group name of the PowerExchange Listener. The PowerExchange Listener should be the only UID in the specified group.