Hi,
I have a Kerberos Ticket like follows (The Ticket is passed from Apache
mod_kerb by request header):
YIIGHAYGKwYBBQUCoIIGEDCCBgygMDAuBgkqhkiC9xIBAgIGCSqGSIb3EgECAgYKKoZIhvcSAQICAwYKKwYBBAGCNwICCqKCBdYEggXSYIIFzgYJKoZIhvcSAQICAQBuggW9MIIFuaADAgEFoQMCAQ6iBwMFACCjggThYYIE3TCCBNmgAwIBBaETGxF
Hi,
> Does anybody know how I can extract Principal and other Information from that
> Ticket in Java?
You can do it using the jcifs AND the jcifs-ext library - look at the spnego
classes and http negotiation filter etc..
Cheers,
Bruce
--
No virus found in this outgoing message.
Checked by AV
Quoting Ken Raeburn <[EMAIL PROTECTED]>:
> including preauthentication and KDC location determination
What does this mean/do?
> Client-side support for server name referrals,
> if you're using a Microsoft KDC. SPNEGO support in GSSAPI.
Is this going to make it easier (in exactly what way) to u
Quoting Sam Hartman <[EMAIL PROTECTED]>:
> because the referrals support in 1.6 will eventually be useful to
> you.
Referrals support? Is that like the referrals in LDAP
terms?
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.ed
On Fri, 2 Mar 2007 13:58:40 +0200
"Bruce Stewart" <[EMAIL PROTECTED]> wrote:
> Hi,
>
> > Does anybody know how I can extract Principal and other Information from
> > that Ticket in Java?
Are you sure mod_auth_kerb doesn't put the principal name somewhere
(e.g. REMOTE_USER)?
Otherwise you have
Hello,
We have a situation where we are trying to get AIX Kerberos to interoperate
with Microsoft w2k3 AD 4-domain forest. The challenge is to get the krb5.conf
configuration to allow for the SPN to be registered in an account that is not
in the root domain of the forest. Example-
Forest-
Exa
Hi I have reada forumon the net about you guystrying
tosend password changes to Ad from Linuxbox with
Kerberos.
I would love it if you guys had a solution that would be
able to send AD password changes\syncs to a Linux box.
We would l
if the host name is host.example.com and the service principal is
http/[EMAIL PROTECTED] then the domain realm
entry for host.example.com should be SUBDOM.DOM2.EXAMPLE.COM
Jeffrey Altman
Secure Endpoints Inc.
Eric Schwarz wrote:
> Hello,
>
> We have a situation where we are trying to get AIX Ker
