Description
When you access an SAP Adaptive Server Enterprise database in PowerBuilder through Open Client, Sec_Keytab_File is one of several parameters that support login authentication for network-based security services. (For other login authentication parameters, see the See Also section.)
Sec_Keytab_File applies only to connections using Distributed Computing Environment (DCE) Kerberos as their security mechanism and requesting network-based login authentication. For those connections, Sec_Keytab_File specifies the name of the keytab file containing the security key for the DCE user.
You must set Sec_Keytab_File if the login ID specified in the database profile or Application is different from the user name of the DCE user currently running the application.
You must specify a value for Sec_Keytab_File before connecting to the database in PowerBuilder.
Using third-party security mechanisms
For information about the third-party security mechanisms and operating system platforms that has been tested with Open Client security services, see the Open Client documentation.
Applies to
ASE, SYC SAP Adaptive Server Enterprise
Syntax
Sec_Keytab_File='keytab_filename'
|
Parameter |
Description |
|---|---|
|
keytab_filename |
The name of the keytab file containing the security key for the DCE user |
Default value
None
PowerBuilder does not set Sec_Keytab_File or the corresponding SAP Sybase Open Client Client-Library (CT-Lib) connection parameter CS_SEC_KEYTAB if you do not specify a value.
Usage
Supported only with Distributed Computing Environment
Only Distributed Computing Environment (DCE) security servers and clients support the use of keytab files. Therefore, Sec_Keytab_File is supported only when your security mechanism is DCE Kerberos.
When to use
If you want your application to be able to connect to a server with a different user name (login ID) than the DCE user currently running the application, set Sec_Keytab_File to specify the name of the keytab file containing the security key for the appropriate user. For details, see the section called “Requirements for using Open Client security services” in Connecting to Your Database.
Set Release parameter
For this parameter to take effect, you must also set the Release parameter to 11 or higher to specify that your application should use the appropriate version of SAP Sybase Open Client Client-Library (CT-Lib) behavior. See the description of the Release parameter for more information.
Requirements for use
To use Sec_Keytab_File or any other parameter supporting Open Client security services, you must meet certain requirements for using security services in your PowerBuilder application. For details, see the section called “Requirements for using Open Client security services” in Connecting to Your Database.
Corresponding CT-Lib connection property
Specifying a value for Sec_Keytab_File sets the corresponding SAP Sybase CT-Lib connection property named CS_SEC_KEYTAB.
Examples
To specify C:\DCE_KEY as the name of the DCE keytab file:
-
Database profile
Type the following in the Keytab File box on the Security page in the Database Profile Setup dialog box:
C:\DCE_KEY
-
Application
Type the following in code:
SQLCA.DBParm="Sec_Keytab_File='C:\DCE_KEY';Release=15"
See also
