[24580] in Kerberos
Re: is that common to use kerberos authentication for SUN iplanet
daemon@ATHENA.MIT.EDU (Markus Moeller)
Thu Sep 1 15:33:22 2005
To: kerberos@mit.edu
From: "Markus Moeller" <huaraz@moeller.plus.com>
Date: Thu, 1 Sep 2005 20:24:16 +0100
Message-ID: <df7kde$p4h$1@sea.gmane.org>
X-Complaints-To: usenet@sea.gmane.org
Errors-To: kerberos-bounces@mit.edu
Craig,
you say you use SASL + SSL. As far as I know SASL/GSSAPI can do encryption
too. What was the reason not to use SASL/GSSAPI with encryption. And example
is AD, which can be accessed via SASL/GSSAPI with encryption.
Thanks
Markus
"Craig Huckabee" <huck@spawar.navy.mil> wrote in message
news:4316DEC8.5060809@spawar.navy.mil...
> Kent Wu wrote:
>>
>> So my question is that is it pretty easy to enable Kerberos for SUN
>> LDAP after installing SEAM? Or can SUN LDAP use other KDC as well?
>
> We use Sun's LDAP server with PADL's GSSAPI plugin - we built our copy
> against MIT Kerberos 1.3.x and use MIT KDCs. I think the binary versions
> they sold previously also use MIT Kerberos.
>
> We now have several processes that regularly use only GSSAPI/SASL over
> SSL to authenticate and communicate with LDAP. Works very well.
>
> HTH,
> Craig
>
> ________________________________________________
> Kerberos mailing list Kerberos@mit.edu
> https://mailman.mit.edu/mailman/listinfo/kerberos
>
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos