Bo Berglund wrote: > On Tue, 2 Apr 2002 18:24:43 +0000 (UTC), Brian Smith > <[EMAIL PROTECTED]> wrote: > > >>>But it only works with the pserver-protocol, not with the sspi-protocol: >>> C:\> cvs -d :sspi:MyCVSLogin@cvssrv:/Repository login >>> Logging in to :sspi:MyCVSLogin@cvssrv:2401/Repository >>> CVS password: ValidNTUserPassword >>> cvs [login aborted]: : Authentication failed >>> >>cvs -d :sspi:MyNTUser@cvssrv:/Repository login >> >>:pserver: is the only protocol that uses the passwd file. :sspi: mode >>authenticates you using your domain/machine credentials. >> >>So, yes, this is a "feature". BTW, If your users can use :sspi: then why >>do you need :pserver:? >> >>- Brian >> > > I hope still only logins listed in the passwd file gets past the sspi > authentication?
No, the passwd file is only for :pserver:. When you are using :sspi: you are saying you want to be authenticated by the domain, not by the passwd file. In fact, in :sspi: mode you are actually authenticated before the server even knows what the the requested CVSROOT root is. Remember, the passwd file is only for authentication, not authorization. - Brian _______________________________________________ Cvsnt mailing list [EMAIL PROTECTED] http://www.cvsnt.org/cgi-bin/mailman/listinfo/cvsnt
