[OpenAFS] Re: Heimdal & OpenAFS 1.7.4: Difficult user experience

As a followup to my last post, I attach a proposed change
the Kerberos section of the Windows installation web page:

Kerberos (MIT or Heimdal)

OpenAFS for Windows depends on a third party Kerberos 5 implementation for network authentication. There are two supported options:

MIT Kerberos for Windows (64-bit releases of KFW are available from Secure Endpoints Inc.)
Heimdal Kerberos NB: Currently, if you use Heimdal Kerberos with OpenAFS, you must add allow_weak_crypto = true to the [libdefaults] section of krb5.conf in C:\ProgramData\Kerberos.

The recommended version of Kerberos v5 for OpenAFS for Windows 1.6.0b is MIT version 3.2.2.

The recommended version of Kerberos v5 for OpenAFS for Windows 1.7.4 is Heimdal.

MIT 3.2.2 ships with Network Identity Manager version 1.3.1. Network Identity Manager version 2.0 is recommended for use with OpenAFS. Secure Endpoints provides version 2.0 as a free update.