[
https://issues.apache.org/jira/browse/DIRKRB-120?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14279902#comment-14279902
]
Kai Zheng commented on DIRKRB-120:
----------------------------------
The KDC side configuration abstraction should be general enough and shall not
contain any MS AD or MIT Kerberos specific items. If the patch does so then we
should remove them. The mentioned item "FILE:/var/log/krb5libs.log" is just a
simple testing value, which does not mean the value is hard-coded in the server
logic.
Looks like the patch adds nice enhancement to allow support MIT Kerberos
configuration, which does not prevent us from supporting other products like MS
AD. Currently KdcConfig/KdcConfigKey allows to support loading multiple
configuration files regardless their concrete formats. Loading which
configuration files would be up to how the abstract KdcServer is sub-classed.
MIT Kerberos is the Kerberos reference implementation and what's important to
us is that it's open sourced with nice license so we can learn from it
regarding implementation. MS AD looks like a black box and sure we should keep
interoperable with it.
> Enhance KDC Server to respect kdc.conf file
> -------------------------------------------
>
> Key: DIRKRB-120
> URL: https://issues.apache.org/jira/browse/DIRKRB-120
> Project: Directory Kerberos
> Issue Type: Sub-task
> Reporter: Lin Chen
> Assignee: Lin Chen
> Attachments: DIRKRB-120_v1.patch
>
>
> Enhance KDC Server to respect kdc.conf file to make administration easier.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
