5.2.1 Authentication server
To use SLM, you must have an authentication server for managing the users.
SLM uses JP1/Base as the authentication server.
Use the JP1/Base on the host on which SLM - Manager is installed.
Provide a host on which JP1/Base is installed that is separate from the host on which both JP1/Base and JP1/Software Distribution Manager have been installed, then use each host as either the primary authentication server or the secondary authentication server.
If you already have a JP1/Base that has been used as your authentication server because, for example, you are using other JP1 products, you can use your existing authentication server.
The host specified as the authentication server (primary authentication server) is used to manage JP1 users and operation permissions for JP1 resource groups (service groups).
Therefore, before you set up SLM users, evaluate how you want to use authentication servers.
- When there is one authentication server:
The example shown in the following figure uses JP1/Base on the host on which SLM - Manager is installed as the authentication server.
Figure 5‒9: Using JP1/Base on the host on which SLM - Manager is installed as the authentication server ![[Figure]](GRAPHICS/F0000016.GIF)
If you use JP1/Base on the host on which SLM - Manager is installed as the authentication server, you can use SLM with the minimum system configuration. However, in the event of a problem in JP1/Base, applications using SLM will stop.
- When there are two authentication servers:
The example shown in the following figure provides two hosts on which JP1/Base is installed and uses one as the primary authentication server and one as the secondary authentication server.
Figure 5‒10: Using two hosts on which JP1/Base is installed and using them as primary and secondary authentication servers ![[Figure]](GRAPHICS/F0000058.GIF)
If you provide a primary authentication server that is used during normal operation and a secondary authentication server that is used as a backup (and which contains the same setup information as the primary authentication server), then if the primary authentication server cannot be connected for some reason, you can avoid application downtime by switching automatically to the secondary authentication server.
For details about primary and secondary authentication servers, see the section describing authentication servers in the JP1/Base User's Guide.