Raghu S wrote: > Thanks for the response. > > We are not using IBM Kerberos. We are just using kaserver authentication. > Server (1.2.11) installed on Redhat 3. Windows clients uses OpenAFS > client 1.3.77 to connect to their file space. Maximum consecutive > unsuccessful authentications value is ineffective for windows users. > > Do we have to install MIT kerberos to resolve this? Do we have to > consider using MIT kerberos because kaserver going to be discontinued in > near future? > > Thanks > Raghu
The OpenAFS for Windows authentication to kaserver uses IBM's implementation of Kerberos 4 over UDP. It does not use the kauth (krb4 over rx) implementation. You should consider installing a Kerberos 5 solution because it is more secure than kaserver and has better end user experience on Windows.
smime.p7s
Description: S/MIME Cryptographic Signature
