>I've also found that if I took a client linked with a Kerberos library >that didn't understand AES keys (1.2 era), pointed it at a ticket cache >containing an AES TGT, and asked it to get a service ticket, it would >fail.
With an AES TGT, or an AES session key as part of the TGT? The latter would obviously fail; I really thought we had 1.2 era clients with AES service tickets without any problems, but perhaps my memory is failing me. --Ken _______________________________________________ OpenAFS-info mailing list [email protected] https://lists.openafs.org/mailman/listinfo/openafs-info
