[19640] in Kerberos
Re: AFS and Kerberos 5
daemon@ATHENA.MIT.EDU (Sam Hartman)
Tue Jul 22 17:54:41 2003
To: MattW <mbw@u.washington.edu>
From: Sam Hartman <hartmans@MIT.EDU>
Date: Tue, 22 Jul 2003 17:53:23 -0400
In-Reply-To: <bfjn82$23mi$1@nntp6.u.washington.edu> (mbw@u.washington.edu's
message of "Tue, 22 Jul 2003 09:03:09 -0700")
Message-ID: <tslfzkyz0rw.fsf@konishi-polis.mit.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
cc: kerberos@mit.edu
Errors-To: kerberos-bounces@mit.edu
>>>>> "MattW" == MattW <mbw@u.washington.edu> writes:
MattW> Esteemed Kerberos Peers,
MattW> I am trying to set up AFS and authenticate with my Kerberos
MattW> 5 KDC (AFS on RedHat, KDC on debian linux)
MattW> My question today is:
MattW> Can I leave my Kerberos 5 KDC in pure Kerb 5 mode or do I
MattW> have to run some kind of Kerb 5-to-4 daemon to issue kerb 4
MattW> tickets to the AFS server - I'd like to be pure kerb 5 if
MattW> possible.
You could in theory use a special aklog, but you are probably better
off running a krb524d. Note that you can probably run a krb524d
without access to any keys. This has not been tested, but should work
assuming you have Kerberos 1.2.8 and OpenAFS 1.2.9 or better.
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
