[I sent a message on Friday that's not in the imap-uw archive and has
a incorrect subject. Sorry if this becomes a duplicate message.]
I'm attempting to Kerberize our UW IMAP service. I've run into some
trouble with service principals.
I'm working, first, with my own Mail client Mac OS X Mail.app which
looks like its do "a" right thing (perhaps not "the"). It requests
access to the principal "host/[EMAIL PROTECTED]". My Kerberized imapd
looks for the principal "imap/[EMAIL PROTECTED]" and fails to find it.
I expect that I would not succeed if I attempted to relabel the
principal name in the server's keytab--thus using the same key. I
assume that Kerberos would fail if the principal names don't match.
And, if that would work, the kadmin tool randomizes keys as it puts
them in keytabs, so I don't think it's possible to create two service
principals with the same key.
Can someone point in the right direction?
BTW, I'm looking use this with Pubcookie and IMP so any additional
notes about that would be appreciated.
Thanks,
Paul
--
Paul Fardy
Network Services Group
Computing and Networking Services
University of Toronto
_______________________________________________
Imap-uw mailing list
[email protected]
https://mailman1.u.washington.edu/mailman/listinfo/imap-uw
