Sonja Benz writes:
> a need pam_krb5 for AIX. Since AIX seems be special and a bit tricky if
> porting pam_krb5, I appriciate your advice: We do not necessarily need
> the newest package. A secure and easy to port one would be nice. The
> usage of pam_ldap will be limited in a way, where it will
Hi,
a need pam_krb5 for AIX. Since AIX seems be special and a bit tricky if
porting pam_krb5, I appriciate your advice: We do not necessarily need the
newest package. A secure and easy to port one would be nice. The usage of
pam_ldap will be limited in a way, where it will be dynamically called
On Thu, 2011-07-14 at 21:57 -0400, Chris Hecker wrote:
> 1. I'd like to specify the profile information via code directly in the
> clients, rather than loading it from a file. In other words, I'd like
> to simply set the default_realm, the kdc, and whatnot dynamically from
> code. Looking thr
Replying to myself...
> I have a single service using a unique service key, can I use the
> memory replay cache safely?
Hmm, it looks like there is no memory replay cache type in MIT kerberos.
I was confused by some old Sun/IBM docs that are online that describe
a memory replay cache type.
Hi, I'm planning on using Kerberos for my video game, and so I am
probably using it slightly differently than most installations, and I
want to make sure I'm doing the right thing security-wise, and making
any changes in the right places. Here are some random questions I have
related to this:
Hi
I have program to create kerberos ticket if ticket is not there or
expired. Some time I am getting the following error
"Error while calling krb5_get_credentials. error code = -1765328243".
The error code -1765328243 indicate KRB5_CC_NOTFOUND.
Can someone tell, when I get this error and how to
On 7/14/2011 7:59 AM, Smith, Christopher (C&IT) wrote:
>
> Hi all,
>
> Basically I've got a shibboleth IDP (apache/tomcat) server running on windows
> and I need to Kerberos enable this server.
> I've been reading about using mod_auth_kerb but instructions seam to relate
> to compiling on Linux
On Wed, 2011-07-13 at 15:33 -0400, Benjamin Coddington wrote:
> Anyway, calling gss_accept_sec_context this way allows svcgssd to
> create a context for any requested service name -- but the problem we
> found is that svcgssd opens the kerberos replay cache for every
> context/cred created, eventua
Hi all,
Basically I've got a shibboleth IDP (apache/tomcat) server running on windows
and I need to Kerberos enable this server.
I've been reading about using mod_auth_kerb but instructions seam to relate to
compiling on Linux. or using YUM to install.
Does anyone have any instructions / web s
