[EMAIL PROTECTED] wrote: > > Hello, > > I'm starting to implement Kerberos support on a application, but I don't know > if I should implement using the GSSAPI or the Kerberos API... What is the > best/worse of them? Is there any "official" recomendation about that?
GSSAPI unless there are special requirements. > > The other problem I'll have to solve is to implement the authentication over > HTTP, any suggestions? Look at the kx509 from the University of Michigan. It uses Kerberos authentication to obtain a short term certificate. This certificate can then be used by IE or Netscape. You then use the standard SSL in the browsers and web servers. The client can run on any Unix, Mac or Windows. See: http://www.citi.umich.edu/projects/kerb_pki/ > > Thanks in advance, > > Silvio Fonseca > ------------------------------------------------- > Relato Consultoria de Inform�tica > Rua Mto. Jo�o Gomes de Ara�jo, 106 cj. 42 > Alto de Santana - S�o Paulo - SP > Telefones: (11) 6978-5253 / (11) 6978-5262 > Fax: (11) 6971-3115 > > ________________________________________________ > Kerberos mailing list [EMAIL PROTECTED] > https://mailman.mit.edu/mailman/listinfo/kerberos -- Douglas E. Engert <[EMAIL PROTECTED]> Argonne National Laboratory 9700 South Cass Avenue Argonne, Illinois 60439 (630) 252-5444 ________________________________________________ Kerberos mailing list [EMAIL PROTECTED] https://mailman.mit.edu/mailman/listinfo/kerberos
