[37044] in Kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

RE: A client name with an '@'

daemon@ATHENA.MIT.EDU (Nordgren, Bryce L -FS)
Tue Jun 2 17:38:20 2015

From: "Nordgren, Bryce L -FS" <bnordgren@fs.fed.us>
To: Luke Howard <lukeh@padl.com>
Date: Tue, 2 Jun 2015 21:37:59 +0000
Message-ID: <82E7C9A01FD0764CACDD35D10F5DFB6E7E1194@001FSN2MPN1-046.001f.mgd2.msft.net>
In-Reply-To: <8419554E-50B0-4D5D-BC10-AD2105E1EA38@padl.com>
Content-Language: en-US
MIME-Version: 1.0
Cc: "kerberos@mit.edu" <kerberos@mit.edu>
Content-Type: text/plain; charset="utf-8"
Errors-To: kerberos-bounces@mit.edu
Content-Transfer-Encoding: 8bit

> You could try the -C and -E options to kinit:
> 
> 	-C canonicalize
> 	-E client is enterprise principal name
> 
> — Luke

I could, but I'm not certain the MIT Kerberos KDC (to which kinit is connecting) knows how to canonicalize. Boy if I could get user principal mapping going, that would be sweet.

For the moment, I seem to be PKINITing successfully.

Bryce

________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[37044] in Kerberos

RE: A client name with an '@'

daemon@ATHENA.MIT.EDU (Nordgren, Bryce L -FS)Tue Jun 2 17:38:20 2015

daemon@ATHENA.MIT.EDU (Nordgren, Bryce L -FS)
Tue Jun 2 17:38:20 2015