Joe Buehler wrote: > Jeffrey Altman wrote: > >> However, the Server Manager should obtain tokens using Kerberos 5. >> I added that code a very long time ago. >> >> cellname: cellname >> username: kerberos 5 principal >> password: password > > Keep in mind that I'm running against a K5 server using K4. It won't > take my password. > > If I use the usual "jhpb.admin" I get a popup:
If you have KFW installed then you are using Kerberos 5. If you do not have KFW installed, then the behavior of Server Manager is identical to what it was before. If you have a principal named [EMAIL PROTECTED] in your KDB then it will be found. Note that Kerberos 5 uses multiple components and not name.instance. The Kerberos 5 principal name that maps to jhph.admin within the PTS database is jhph/[EMAIL PROTECTED] This is not the same as the Kerberos 4 name [EMAIL PROTECTED] Using Kerberos 5 authentication, the [EMAIL PROTECTED] form will not be accepted by the servers in order to avoid many-to-one name mapping and thereby producing a security hole. I suggest you start using Kerberos 5 for administration if you want to use the Server Manager. Jeffrey Altman
smime.p7s
Description: S/MIME Cryptographic Signature
