Constrained delegation in MIT Kerberos required database configuration
support.
This is not available in plain DB2, only available if you use a backend
like LDAP.
FreeIPA (or Red Hat Identity Management) support Constrained delegation
for example.
HTH,
Simo.
On Fri, 2019-04-05 at 14:38 +, Jef
It would be helpful to understand more of your environment. Can you
provide more details of what you are trying to accomplish?
Are multiple Kerberos realms involved or just a single Active Directory
domain? Is an MIT KDC involved? Or just MIT Kerberos clients?
What errors are you seeing with M
Thanks Christopher. I have followed this and can get it to work, but when I
add MIT Kerberos into the mix it does not work. According to Microsoft 3 Tier
Kerberos support there needs to be a service or spn configured for MIT Kerberos
to do Constraint Delegation. So I am looking for documentat
For Active Directory:
https://docs.microsoft.com/en-us/windows-server/security/kerberos/kerberos-constrained-delegation-overview
< I did not get a response from anybody. Does anybody have instructions for
> setting up Constraint Delegation on any platform?
>
> Thanks,
> Joseph
>
> -Origin
I did not get a response from anybody. Does anybody have instructions for
setting up Constraint Delegation on any platform?
Thanks,
Joseph
-Original Message-
From: kerberos-boun...@mit.edu On Behalf Of
Jeffries, Joseph L
Sent: Wednesday, April 3, 2019 8:47 AM
To: kerberos@mit.edu
Subj
