subject:"RE\: Using Kerby kerb\-client as an alternative for GSS\-API for Kerberos Single Sign On."

Re: Using Kerby kerb-client as an alternative for GSS-API for Kerberos Single Sign On.

2017-05-08 Thread Christopher Lamb

Hi Kai With the following code I can successfully retrieve a TGT from my existing credential cache and use it to request a service ticket!. Unfortunately the Service Ticket Request is currently failing with "KDC cannot accommodate requested option". private TgtTicket retrieveCachedTicket(File

Re: Using Kerby kerb-client as an alternative for GSS-API for Kerberos Single Sign On.

2017-05-08 Thread Zheng, Kai

Got your point. Please read credential cache utility codes and see if any API doing so. Sent from iPhone 在 2017年5月8日，下午8:13，Christopher Lamb > 写道： Hi Kai Browsing further through the kerby code, I think I need the opposite of

RE: Using Kerby kerb-client as an alternative for GSS-API for Kerberos Single Sign On.

2017-05-08 Thread Christopher Lamb

Hi Kai Browsing further through the kerby code, I think I need the opposite of KrbClientBase.storeTicket(): for instance a " Public TgtTicket retrieveCachedTicket(File ccacheFile)" Let me see if I can knock something together based on storeTicket() Cheers Chris From: "Zheng, Kai"

RE: Using Kerby kerb-client as an alternative for GSS-API for Kerberos Single Sign On.

2017-05-08 Thread Zheng, Kai

If I remember correctly, it first generates a cache with a TGT, then do the login test with the ticket cache. In your case, you would need to know where is the cache file and point it to Kerby client, as the test did. Regards, Kai From: Christopher Lamb [mailto:christopher.l...@ch.ibm.com]

RE: Using Kerby kerb-client as an alternative for GSS-API for Kerberos Single Sign On.

2017-05-08 Thread Christopher Lamb

Hi Kai Thanks, example code is always best. TicketCacheLoginTest looks like part of the answer, especially the storeTicket() function. However (unless I have completely misread the test-case), the TGT is not retrieved from the cache, it is only stored there. In my Single-Sign-On case, the user

RE: Using Kerby kerb-client as an alternative for GSS-API for Kerberos Single Sign On.

2017-05-08 Thread Zheng, Kai

Hi Chris, Both dev list should be OK as Kerby folks are also in the parent one. I haven't read your details fully (will do it later), but would make sure if you have already checked out the test of TicketCacheLoginTest in the kerby code base. In one word, Kerby client surely can consume and

Re: Using Kerby kerb-client as an alternative for GSS-API for Kerberos Single Sign On.

Re: Using Kerby kerb-client as an alternative for GSS-API for Kerberos Single Sign On.

RE: Using Kerby kerb-client as an alternative for GSS-API for Kerberos Single Sign On.

RE: Using Kerby kerb-client as an alternative for GSS-API for Kerberos Single Sign On.

RE: Using Kerby kerb-client as an alternative for GSS-API for Kerberos Single Sign On.

RE: Using Kerby kerb-client as an alternative for GSS-API for Kerberos Single Sign On.

6 matches

Site Navigation

Mail list logo

Footer information