Re: [OpenAFS] Kerberos Ticket Sizes when using AD as the KDC and OpenAFS

ted creedon Fri, 27 Jan 2006 09:53:38 -0800

So afs knows you're "admin" thru the "kinit admin" via aklog, and thesingle DES key stuffing that takes place when one sets the afs keys uptakes care of authenticating the afs user to krb5 without having tomanually enter a password to krb5?


BTW thanks...


ted

Jeffrey Altman wrote:

ted creedon wrote:

1. Is the AFS service ticket the only thing needed to make an afs token?

yes

2. I.e. does pts handle all the afs permissions from then on?

yes

3. can "kinit admin" now authenticate to  AD instead of a krb5 server?


this has been true since Windows started using Kerberos.

_______________________________________________
OpenAFS-info mailing list
[email protected]
https://lists.openafs.org/mailman/listinfo/openafs-info

Re: [OpenAFS] Kerberos Ticket Sizes when using AD as the KDC and OpenAFS

Reply via email to