[32019] in Kerberos
kerberos and smartphone clients
daemon@ATHENA.MIT.EDU (Nikolay Shopik)
Sat Feb 6 16:05:23 2010
Message-ID: <4B6D17CA.80504@inblock.ru>
Date: Sat, 06 Feb 2010 10:18:34 +0300
From: Nikolay Shopik <shopik@inblock.ru>
MIME-Version: 1.0
To: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Hello everyone,
I'm in middle of process making my mail server Kerberized.
Currently my infrastructure is only password based, but I plan move to
PKINIT thus using certificate based authentication. Afterward I though
about my smartphone clients who use email on their phones this is
exclusively iPhone users.
So this makes me think I should leave regular password based
authentication for these mobile clients, which isn't great because you
have to manage two separate db for logins/passwords. In same time I
though every mobile phone have smart card already which is SIM card,
there even EAP-SIM allowing use it to authenticate to wireless networks.
So what best way to accomplish this task, without making huge pain when
managing logins/passwords?
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
