[36369] in Kerberos
Re: libapache2-mod-auth-kerb and cross-realm
daemon@ATHENA.MIT.EDU (Jaap Winius)
Wed Aug 13 20:50:26 2014
To: kerberos@mit.edu
From: Jaap Winius <jwinius@umrk.nl>
Date: Thu, 14 Aug 2014 00:49:47 +0000 (UTC)
Message-ID: <lsh13b$r11$1@ger.gmane.org>
Mime-Version: 1.0
X-Complaints-To: usenet@ger.gmane.org
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On Tue, 12 Aug 2014 18:41:20 -0700, Russ Allbery wrote:
>> Do you mean an auth_to_local mapping in krb5.conf?
>
> Yes -- I think there are multiple different ways to do it, and it
> changes between MIT and Heimdal, but that's the right place to be
> looking.
Unfortunately, this doesn't work. At first I thought I could get away
with using simply 'auth_to_local = DEFAULT', but apparently auth_to_local
mappings can only be applied to principals from the default realm.
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
