Henry B. Hotz wrote:
It's not clear to me why the MIT and Heimdal realms need to be
different.
The reason is quite embarassing, actually - total re-branding. Total
renamification :-) from AAA to BBB.
Lotsa host/* principals to recreate and change. And 24/7/365 as usual.
So I have to simply
Hi all,
I've got a strange problem running a kerberos master server; the
krb5kdc process starts eating up diskspace in /var. I takes currently a
few weeks to fill up the whole slice, and when it is filled up,
kerberos will no longer give tickets.
uname -a:
FreeBSD chuck.mydomain.fake
[EMAIL PROTECTED] wrote:
[EMAIL PROTECTED] wrote:
OK, I think I have fixed the services. I have: # svcs -v | grep
login online - 13:25:02 35
svc:/system/console-login:default online -
13:25:11 - svc:/network/login:eklogin online -
13:25:12 - svc:/network/login:klogin online -
13:25:12 -
When the TGS issues a ticket to a user to access an application which
accepts Kerberos as an authentication protocol, what is precisely the
process to ensure that the ticket is valid and therefore access can be
granted ?
Does the Kerberized app forward the ticket to the authentification
service
On Feb 9, 2005, at 12:53 AM, Priit Randla wrote:
Henry B. Hotz wrote:
It's not clear to me why the MIT and Heimdal realms need to be
different.
The reason is quite embarassing, actually - total re-branding.
Total renamification :-) from AAA to BBB.
Lotsa host/* principals to recreate and
On Wed, 9 Feb 2005 at 08:41 (-0800), Paul Silverman wrote:
When the TGS issues a ticket to a user to access an application which
accepts Kerberos as an authentication protocol, what is precisely the
process to ensure that the ticket is valid and therefore access can be
granted ?
Does the
Hi:
Does anybody know if I can obtain and cache kerberos ticket-granting
tickets, using the PAM lib modules calls (like pam_start.. etc)?
Or if I can do what kinit does programmatically somehow?
Thanks
Kerberos mailing list
Dan Million wrote:
I am trying to learn more about the innards of Kerberos. I have started
to read RFC 1510, but it is over 11 years old and I was wondering: has
Kerberos changed enough since then that reading this RFC would be a
waste of time?
Anyone have an opinion on this?
Dan
Paul Silverman wrote:
When the TGS issues a ticket to a user to access an application which
accepts Kerberos as an authentication protocol, what is precisely the
process to ensure that the ticket is valid and therefore access can be
granted ?
Does the Kerberized app forward the ticket to
k wrote:
Hi:
Does anybody know if I can obtain and cache kerberos ticket-granting
tickets, using the PAM lib modules calls (like pam_start.. etc)?
Or if I can do what kinit does programmatically somehow?
Thanks
I'm not trying to be a smart alec but kinit is a program and you
can
10 matches
Mail list logo