[24313] in Kerberos
Re: EAP-Kerberos
daemon@ATHENA.MIT.EDU (Sam Hartman)
Sun Jul 17 21:57:37 2005
To: Saber Zrelli <zrelli@jaist.ac.jp>
From: Sam Hartman <hartmans-ietf@mit.edu>
Date: Sun, 17 Jul 2005 21:55:12 -0400
In-Reply-To: <20050717160153.GB16863@mlserv.jaist.ac.jp> (Saber Zrelli's
message of "Mon, 18 Jul 2005 01:01:53 +0900")
Message-ID: <tslr7dwyj27.fsf@cz.mit.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
cc: kerberos@mit.edu
cc: cmh@netsteady.cc
Errors-To: kerberos-bounces@mit.edu
>>>>> "Saber" == Saber Zrelli <zrelli@jaist.ac.jp> writes:
Saber> when some visiting user would like to connect to a foreign
Saber> wireless network, In addition to the bootstrapping problem,
Saber> the actual protocol defined by IAKERB does not allow the
Saber> operator to authenticate the visiting user since he/she is
Saber> not registered in the local DB. Hence there is need to
Saber> extend the proxy properties to perform inter-realm
Saber> operations (to communicate with the user's home realm ) for
Saber> authenticating roaming users.
For the record, I strongly disagree with the above.
I don't have time to explain now, but will try to get to it reasonably soon.
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
