[36370] in Kerberos
Re: libapache2-mod-auth-kerb and cross-realm
daemon@ATHENA.MIT.EDU (Russ Allbery)
Wed Aug 13 21:12:36 2014
From: Russ Allbery <eagle@eyrie.org>
To: Jaap Winius <jwinius@umrk.nl>
In-Reply-To: <lsh13b$r11$1@ger.gmane.org> (Jaap Winius's message of "Thu, 14
Aug 2014 00:49:47 +0000 (UTC)")
Date: Wed, 13 Aug 2014 18:12:20 -0700
Message-ID: <8761hvdgcr.fsf@windlord.stanford.edu>
MIME-Version: 1.0
Cc: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Jaap Winius <jwinius@umrk.nl> writes:
> Unfortunately, this doesn't work. At first I thought I could get away
> with using simply 'auth_to_local = DEFAULT', but apparently auth_to_local
> mappings can only be applied to principals from the default realm.
Hm, I don't think that's the case with MIT Kerberos, although the Heimdal
documentation claims it is with Heimdal. (But I'm not sure if the Heimdal
documentation has caught up with recent development there.)
--
Russ Allbery (eagle@eyrie.org) <http://www.eyrie.org/~eagle/>
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
