[2869] in Kerberos
info on kadm?
daemon@ATHENA.MIT.EDU (guru@mare.att.com)
Wed Oct 20 17:45:32 1993
From: guru@mare.att.com
Date: Wed, 20 Oct 93 17:10 EDT
Original-From: mare!guru (g.sundararaman)
To: kerberos@MIT.EDU
Folks,
After reading about Kerberos (not yet dwelled into the code yet), a couple
of questions:
1. Is there a document that describes the protocol between a client and
the KADM server? This protocol is supposed to enable addition/deletion
of principals, and the modification of their keys.
2. If the principal is a user, I would assume the login process would take
care of password expiration, and ask the user for a new password, right?
3. If the principal is a server, how is its key similarly "managed" with
the KDC? Is there a client program that handles this?
4. Does Kerberos work with Challenge/Response type authentication devices
(note that the KRB5 spec has a #define for ATT_SMART_CARD)? How?
Thanks,
-Guru
-*- -*- -*- -*- -*- -*- -*- -*- -*- -*- -*- -*- -*- -*- -*- -*- -*- -*- -*-
Guru Sundararaman email: guru@mare.att.com
Consultant phone: (908) 580-4527
AT&T Bell Laboratories fax: (908) 580-4721
