Hello everyone, I'm in middle of process making my mail server Kerberized. Currently my infrastructure is only password based, but I plan move to PKINIT thus using certificate based authentication. Afterward I though about my smartphone clients who use email on their phones this is exclusively iPhone users. So this makes me think I should leave regular password based authentication for these mobile clients, which isn't great because you have to manage two separate db for logins/passwords. In same time I though every mobile phone have smart card already which is SIM card, there even EAP-SIM allowing use it to authenticate to wireless networks. So what best way to accomplish this task, without making huge pain when managing logins/passwords?
________________________________________________ Kerberos mailing list Kerberos@mit.edu https://mailman.mit.edu/mailman/listinfo/kerberos