[24580] in Kerberos

home help back first fref pref prev next nref lref last post

Re: is that common to use kerberos authentication for SUN iplanet

daemon@ATHENA.MIT.EDU (Markus Moeller)
Thu Sep 1 15:33:22 2005

To: kerberos@mit.edu
From: "Markus Moeller" <huaraz@moeller.plus.com>
Date: Thu, 1 Sep 2005 20:24:16 +0100
Message-ID: <df7kde$p4h$1@sea.gmane.org>
X-Complaints-To: usenet@sea.gmane.org
Errors-To: kerberos-bounces@mit.edu

Craig,

you say you use SASL + SSL. As far as I know SASL/GSSAPI can do encryption 
too. What was the reason not to use SASL/GSSAPI with encryption. And example 
is AD, which can be accessed via SASL/GSSAPI with encryption.

Thanks
Markus

"Craig Huckabee" <huck@spawar.navy.mil> wrote in message 
news:4316DEC8.5060809@spawar.navy.mil...
> Kent Wu wrote:
>>
>>    So my question is that is it pretty easy to enable Kerberos for SUN 
>> LDAP after installing SEAM? Or can SUN LDAP use other KDC as well?
>
>   We use Sun's LDAP server with PADL's GSSAPI plugin - we built our copy 
> against MIT Kerberos 1.3.x and use MIT KDCs.  I think the binary versions 
> they sold previously also use MIT Kerberos.
>
>   We now have several processes that regularly use only GSSAPI/SASL over 
> SSL to authenticate and communicate with LDAP.  Works very well.
>
> HTH,
> Craig
>
> ________________________________________________
> Kerberos mailing list           Kerberos@mit.edu
> https://mailman.mit.edu/mailman/listinfo/kerberos
> 



________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos

home help back first fref pref prev next nref lref last post