On Fri, Nov 02, 2007 at 12:03:50PM +0000, John Gilbertson wrote: > Hi, we're looking into trying to integrate Kerberos with our existing > user authentication/authorization systems, after seeing that there was > an LDAP integration option, since all of our user data is available via > LDAP. > > However on further reading I'm not 100% clear on how the integration > works. Is it possible to just use the LDAP integration for user > authentication without having to give Kerberos write access to LDAP? > > If write access is required, what information is stored in LDAP, and > where? As extra data in a user's nod,e or in a separate subtree? > I don't think that write access is a requirement. That is, I have not had to implement it like that. Here is the HOWTO I followed (more or less):
http://aput.net/~jheiss/krbldap/howto.html Regards, -Roberto -- Roberto C. Sánchez http://people.connexer.com/~roberto http://www.connexer.com
signature.asc
Description: Digital signature
________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
