Headlines 
Current Alert
Resolved Alert
Future AlertLast updated on January 7, 2009 at 6:59AM
As of 6:58, all remaining DCE services have been shutdown.
On Wednesday, January 7, 2009, during the regularly scheduled maintenance window (5:00-7:00 a.m.), Information Technology Services (ITS) will terminate the Kerberos authentication servers that relied upon the former security technology. DCE once provided the security portion for the filesystem that formerly supported Penn State Access Account Storage Space (PASS), the Distributed File System (DFS). While PASS' use of DCE and DFS ended in July 2008 with the migration to the new filesystem and KDC security servers (see http://alerts.its.psu.edu/alert-740 for details), some clients may still be using the DCE servers. Any native clients connected to/configured for the legacy servers will no longer work as of January 7.
Kerberos client configurations should use:
fido.aset.psu.edu
scooby.aset.psu.edu
sparky.offsite.psu.edu
The DCE security servers that will be terminated on January 7 are:
tr21g20.aset.psu.edu
tr22g20.aset.psu.edu
tr22g19.aset.psu.edu
yoda.offsite.psu.edu
Please note that the realm name, dce.psu.edu, though used by the DCE servers, will not be decommissioned, as the MIT KDC servers also use this realm name. In addition, Windows Active Directory (AD) administrators who use the ACCESS.PSU.EDU domain or a direct trust to the dce.psu.edu realm from their own AD forest will not be affected. Please also note that both the old and new authentication systems outlined here refer to Penn State Access Account authentication and not Friends of Penn State (FPS) authentication. FPS uses a separate set of servers for Kerberos authentication.
Inquiries and requests for assistance should be directed to ITS Help Desk staff at helpdesk@psu.edu.
For more information, please contact ITS Help Desk staff (helpdesk@psu.edu).
ITS Daily Maintenance Window: 5:00 - 7:00 a.m. EST/EDT
