Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
mod_auth_kerb works, most of the updates nowadays come from Redhat and others
within a specific linux distro. So you can install using your distro specific
package manager. I believe redhat puts their patches in the srpms if want to
compile their latest for a different platform.
>>and it wou
Hello,
Good to hear that this is integrated into Fedora and/or FreeIPA.
> gss_init_sec_context() against any service using the evidence ticket as
> proof to obtain new tickets. If the KDC allows you, that is.
>
Absolute freedom within the confines of Constrained Delegation. Clear.
> So as lon
On Tue, 2013-11-05 at 15:12 +0100, Mark Pröhl wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> On 05.11.2013 13:48, Simo Sorce wrote:
> > I am not sure about upstream but the version we distribute in
> > Fedora and RHEL has Constrained delegation support (specifically
> > S4U2Proxy).
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 05.11.2013 13:48, Simo Sorce wrote:
> I am not sure about upstream but the version we distribute in
> Fedora and RHEL has Constrained delegation support (specifically
> S4U2Proxy).
Is the S4U support in Fedora mod_auth_kerb configurable? Can it be
On Tue, 2013-11-05 at 11:28 +0100, Rick van Rein wrote:
> Hi Chris,
>
> Been looking at similar things:
> > [...] I'd like to
> > authenticate these API users with the same kerberos system. What's the
> > best way to do this? Most APIs are authenticated with OAuth these days,
> > but I don't see
Hi Chris,
Been looking at similar things:
> [...] I'd like to
> authenticate these API users with the same kerberos system. What's the
> best way to do this? Most APIs are authenticated with OAuth these days,
> but I don't see any turnkey hookup for Kerberos and OAuth.
The idea with OAuth as I u