verification by getting a TGT and then failing to
complete the process by trying to use it for something.
I know we found one popular Java library that does that.
--
Mark Sirota, Associate Director, Network Engineering and Services
University of Pennsylvania, Information Systems and Computing
msir
--On November 17, 2005 6:49:22 AM + Jeffrey Altman
[EMAIL PROTECTED] wrote:
The CITI group at UMichigan also has a project that allows you to
use a Kerberos service ticket to obtain an X.509 certificate with
the same lifetime as the Kerberos ticket.
Assuming I'm thinking of the same
--On November 17, 2005 11:05:31 AM -0600 Douglas E. Engert
[EMAIL PROTECTED] wrote:
There is browser support! Along with the UMich Kx509 that works with
the IE there is the kpkcs11 for all the others browsers. This implements
a PKCS11 Security device plugin, and it works on Unix or Windows with
(and it's GSSAPI library) used instead of Microsoft's
sspi.
This line:
user_pref(network.auth.use-sspi, false);
Needs to be put into a user's prefs.js in their user profile dir,
or use options | advanced | config to change the pref.
Mark
--
Mark Sirota, Associate Director, Network Engineering
