[30109] in Kerberos
Re: SSO
daemon@ATHENA.MIT.EDU (Sharad Desai)
Thu Jul 17 15:23:38 2008
Message-ID: <5183a7480807171222m56f9c325sf654dbe1a71d2399@mail.gmail.com>
Date: Thu, 17 Jul 2008 15:22:33 -0400
From: "Sharad Desai" <ssdesai1@gmail.com>
To: "Russ Allbery" <rra@stanford.edu>
In-Reply-To: <5183a7480807171207n63f7df55hf384cac7c507bc65@mail.gmail.com>
MIME-Version: 1.0
Content-Disposition: inline
Cc: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Oops, let me clarify that last post. After reading it, it sounds as if I am
telling you to look for those resources, which is totally the opposite, I
apologize :).
I meant to ask if it was even theoretically possible to adapt the cron jobs
to run off of IIS instead of a Unix server.
On 7/17/08, Sharad Desai <ssdesai1@gmail.com> wrote:
>
> Thanks Russ.
>
> >Given your platform constraints and desire to avoid Active Directory, I
> >think Cosign is definitely your best option. However, I believe that you
> >will need a UNIX server to run the Cosign login daemon, even though you
> >can use IIS for specific web applications. I could be wrong, since I
> >don't run it myself, but you should check on that if that will be a
> >problem.
>
> Is the Unix server for a cron job? If so, then there are some
> resources that can maybe run this job on IIS. I'm not quite sure, but from
> what I've read there are some out there. Let me know if those sound bogus
> or if you think it can be done.
>
> Thanks again
>
> On 7/17/08, Russ Allbery <rra@stanford.edu> wrote:
>>
>> "Sharad Desai" <ssdesai1@gmail.com> writes:
>>
>> > Also, (I'm not sure how familiar people are with Cosign) since Cosign
>> > transforms Kerberos authentication to a cookie-based authentication
>> > which the browsers can use, I was wondering if you have had any
>> > experience with this.
>>
>> Given your platform constraints and desire to avoid Active Directory, I
>> think Cosign is definitely your best option. However, I believe that you
>> will need a UNIX server to run the Cosign login daemon, even though you
>> can use IIS for specific web applications. I could be wrong, since I
>> don't run it myself, but you should check on that if that will be a
>> problem.
>>
>> --
>> Russ Allbery (rra@stanford.edu) <http://www.eyrie.org/~eagle/
>> >
>> ________________________________________________
>> Kerberos mailing list Kerberos@mit.edu
>> https://mailman.mit.edu/mailman/listinfo/kerberos
>>
>
>
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
