[36707] in Kerberos
Re: Clear as mud: PKINIT and -nokey principal addition (krb5-1.13)
daemon@ATHENA.MIT.EDU (Siddharth Mathur)
Mon Jan 5 13:39:24 2015
MIME-Version: 1.0
In-Reply-To: <54AAC93D.20105@mit.edu>
Date: Tue, 6 Jan 2015 00:09:05 +0530
Message-ID: <CABMjiNsZgwj+efR1z2_7G_bQ0AabXk5BRe3GQ0DxNMHFoLt7_A@mail.gmail.com>
From: Siddharth Mathur <smathur@blackbuck.mobi>
To: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
>
> It might help to try deploying to a regular Unix client, to help
> distinguish between client-side issues with the iOS Kerberos
> implementation (which I'm not very familiar with) and server-side issues.
Thanks for debugging tips Greg, will try them out ASAP and report back.
Overall, does what I am trying sounds achievable? No passwords even at
the first login, and exclusive use of client certificates?
Thanks, and hope the new year goes well for you!
Siddharth
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
