Menu

#31 Kerberos support

open-postponed
nobody
None
5
2003-06-06
2003-06-01
Charles Duffy
No

For a given cn, one should be able to specify an
associated Kerberos principal and realm, as so:

objectClass: krb5Principal
krb5PrincipalName: <PRINCIPAL>@<REALM>

Additionally, the user's password should be specified
as follows to indicate that authentication should be
passed off to the Kerberos server:

userPassword: {KERBEROS}<PRINCIPAL>@<REALM>

As on many sites the user's principal is the same as
the user name (and the realm is the same as the domain
name in all caps), these values should perhaps be
defaults (presuming Kerberos is used at all at the site
in question).

Discussion

  • Manuel Amador (Rudd-O)

    Manuel Amador (Rudd-O) - 2003-06-06
    • status: open --> open-postponed
     

  • Manuel Amador (Rudd-O)

    Manuel Amador (Rudd-O) - 2003-06-06

    Logged In: YES
    user_id=150358

    I'll study it, but I cannot guarantee anything, because I've
    been contracted to develop other new features. Perhaps we
    can discuss a commercial support agreement, or you can make
    a quick patch/prototype to be polished and incorporated into
    DA. What do you think?

     

  • Manuel Amador (Rudd-O)

    Manuel Amador (Rudd-O) - 2003-06-06
    • status: open-postponed --> pending-postponed
     

  • Charles Duffy

    Charles Duffy - 2003-06-06
    • status: pending-postponed --> open-postponed
     

  • Charles Duffy

    Charles Duffy - 2003-06-06

    Logged In: YES
    user_id=44367

    I might be able to try putting together a prototype some
    time -- though not 'till well after things calm down (first
    product release happening RSN). In the event that an
    opportunity to work on this presents itself, I'll get in touch.

     

Log in to post a comment.

Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.