Hi all,
Basically I've got a shibboleth IDP (apache/tomcat) server running on windows
and I need to Kerberos enable this server.
I've been reading about using mod_auth_kerb but instructions seam to relate to
compiling on Linux. or using YUM to install.
Does anyone have any instructions / web
On Wed, 2011-07-13 at 15:33 -0400, Benjamin Coddington wrote:
Anyway, calling gss_accept_sec_context this way allows svcgssd to
create a context for any requested service name -- but the problem we
found is that svcgssd opens the kerberos replay cache for every
context/cred created, eventually
On 7/14/2011 7:59 AM, Smith, Christopher (CIT) wrote:
Hi all,
Basically I've got a shibboleth IDP (apache/tomcat) server running on windows
and I need to Kerberos enable this server.
I've been reading about using mod_auth_kerb but instructions seam to relate
to compiling on Linux. or
Hi
I have program to create kerberos ticket if ticket is not there or
expired. Some time I am getting the following error
Error while calling krb5_get_credentials. error code = -1765328243.
The error code -1765328243 indicate KRB5_CC_NOTFOUND.
Can someone tell, when I get this error and how to
Hi, I'm planning on using Kerberos for my video game, and so I am
probably using it slightly differently than most installations, and I
want to make sure I'm doing the right thing security-wise, and making
any changes in the right places. Here are some random questions I have
related to
Replying to myself...
I have a single service using a unique service key, can I use the
memory replay cache safely?
Hmm, it looks like there is no memory replay cache type in MIT kerberos.
I was confused by some old Sun/IBM docs that are online that describe
a memory replay cache type.
On Thu, 2011-07-14 at 21:57 -0400, Chris Hecker wrote:
1. I'd like to specify the profile information via code directly in the
clients, rather than loading it from a file. In other words, I'd like
to simply set the default_realm, the kdc, and whatnot dynamically from
code. Looking
Hi,
a need pam_krb5 for AIX. Since AIX seems be special and a bit tricky if
porting pam_krb5, I appriciate your advice: We do not necessarily need the
newest package. A secure and easy to port one would be nice. The usage of
pam_ldap will be limited in a way, where it will be dynamically called
Sonja Benz sonja.b...@de.ibm.com writes:
a need pam_krb5 for AIX. Since AIX seems be special and a bit tricky if
porting pam_krb5, I appriciate your advice: We do not necessarily need
the newest package. A secure and easy to port one would be nice. The
usage of pam_ldap will be limited in a
