age001.png@01D3807F.2B376950]
Thanks,
William
-Original Message-
From: Greg Hudson [mailto:ghud...@mit.edu]
Sent: jeudi 28 décembre 2017 20:44
To: William HARDY ; 'kerberos@mit.edu'
Subject: Re: FW: Kerberos question/bug
On 12/28/2017 02:18 AM, William HARDY wrote:
> Wh
On 12/28/2017 02:18 AM, William HARDY wrote:
> What is supposed to be in the TGS-REQ
> (Kerberos->tgs-req->req-body->sname->name-string->KerberosString: ? )
sname contains the server principal name. RFC 4120 describes the
protocol in detail.
> It seems that from the same machine (resolving on t
Dear Sir(s),
I am currently facing an issue with a Kerberos implementation.
What is supposed to be in the TGS-REQ
(Kerberos->tgs-req->req-body->sname->name-string->KerberosString: ? )
It seems that from the same machine (resolving on the same DNS servers), the
contents of this field differs in
se like I said I was just using the flask webserver as a test, but if
there's still something wrong with my dns setup then I'd prefer to fix it.
--
View this message in context:
http://kerberos.996246.n3.nabble.com/Beginner-Kerberos-question-problem-with-spnego-authentication-with-webserve
On Wed, Jun 22, 2016 at 6:41 PM, JSoet wrote:
> sure where to look next to solve it. When running the flask webserver I get
> this error when it tries to do the authGSSServerInit call:
> /GSSError: (('Unspecified GSS failure. Minor code may provide more
> information', 851968), ('', 14))/
>
e to look or what to try next, so any advice would be
welcome.
--
View this message in context:
http://kerberos.996246.n3.nabble.com/Beginner-Kerberos-question-problem-with-spnego-authentication-with-webserver-tp45585.html
Sent from the Kerberos - General mailing list archive at Nabb
t; Behalf Of Danny Cho
> Sent: 23 August 2008 01:16
> To: kerberos@mit.edu
> Subject: Java GSSAPI Kerberos question
>
>
> I am hoping that someone here can help me. I have a problem with Java
> GSSAPI that I don't know how to solve. I have written a test Java
&g
Try adding...
refreshKrb5Config = true
to the props you have below
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of Danny Cho
Sent: 23 August 2008 01:16
To: kerberos@mit.edu
Subject: Java GSSAPI Kerberos question
I am hoping that someone here can
I am hoping that someone here can help me. I have a problem with Java
GSSAPI that I don't know how to solve. I have written a test Java server which
acts as a Kerberos service that uses GSSAPI to authenticate users connect to
the service. Here is my gss.conf:
com.sun.security.jgss.accept {
com.su
Hello,
I was wondering if you guys know if there is *any* thing that could
retrieve Active Directory atributes through JAVA from Linux, actually
running CENTRIFY (www.centrify.com) which uses KERBEROS.
Thank you guys
Kerberos mailing list
You can use a java ldap interface with Kerberos authentication.
Markus
"ninjabytes" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]
> Hello,
>
> I was wondering if you guys know if there is *any* thing that could
> retrieve Active Directory atributes through JAVA from Linux, actually
Dear sir or madam,
Every time windows starts, Kerberos prompts me for my password. How do I set
it so that it doesn't load automatically and doesn't sit in my system tray?
Thanks,
Ryan
-
Yahoo! Messenger with Voice. Make PC-to-Phone Calls to the
I managed to solve my problem.
1. extracted keytab for special user
2. jaas.conf looks like
XlabAdminLoginContext {
com.sun.security.auth.module.Krb5LoginModule required
useKeyTab=true
keyTab=didi.keytab
doNotPrompt=true
principal=didi
;
};
Cheers
Didi
Dieter Schicker
The only thing I can assume is that the "stale" tickets are expired.
In other words, the current time is greater than the expiration time
of the ticket. In that case, in order to obtain a new Ticket Granting
Ticket for use in obtaining additional service tickets, the user or
process must authentic
We are implementing a conferencing platform for collaborative
conferencing and ran into an issue with authentication. A small group of
users were being challenged for domain authentication when trying to
access the conferencing platform from their Outlook calendars. As they
proceeded to enter their
yes.
There is a domain to realm mapping section in krb5.conf
--
vj
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
Hello Everyone. I am building a webmail server that uses Kerberos to
authenticate users to our Active Directory servers. My problem is that the
users that need to access this system are across multiple domains (example:
[EMAIL PROTECTED], [EMAIL PROTECTED]). Is there a way for Kerberos to handle
Please tell me how kerberos solve below problem?
if one knows your userID and send it to Authenticaton Server of
kerberos and receive the TGS ticket.
he can break the encryption off-line and capture the private key of
that user.
Kerberos mailing l
[EMAIL PROTECTED] wrote:
> Please tell me how kerberos solve below problem?
> if one knows your userID and send it to Authenticaton Server of
> kerberos and receive the TGS ticket.
> he can break the encryption off-line and capture the private key of
> that user.
>
To prevent this you should r
On Fri, 2002-04-19 at 21:32, Sam Hartman wrote:
> > "Nils" == Nils Olav Selåsdal <[EMAIL PROTECTED]> writes:
>
> Nils> Am I bound to and dn when i use SASL/GSSAPI ? I get my TGT
> Nils> for [EMAIL PROTECTED] and do e.g. a 'ldapsearch -h lfs
> Nils> -LLL', who am I now authorized/b
> "Nils" == Nils Olav Selåsdal <[EMAIL PROTECTED]> writes:
Nils> Am I bound to and dn when i use SASL/GSSAPI ? I get my TGT
Nils> for [EMAIL PROTECTED] and do e.g. a 'ldapsearch -h lfs
Nils> -LLL', who am I now authorized/bound as on the ldap server?
Nils> What I want is that
Am I bound to and dn when i use SASL/GSSAPI ? I get my TGT for
[EMAIL PROTECTED]
and do e.g. a 'ldapsearch -h lfs -LLL', who am I now authorized/bound as
on the ldap server?
What I want is that [EMAIL PROTECTED] binds as
uid=noselasd,ou=People,dc=fiane,dc=intra
Some explanations of this are apprec
22 matches
Mail list logo