[4490] in Kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Kerberos and Access Control

daemon@ATHENA.MIT.EDU (Brian Button)
Fri Jan 13 22:33:24 1995

To: kerberos@MIT.EDU
Date: Fri, 13 Jan 1995 18:28:23 GMT
From: bbutton@netcom.com (Brian Button)

Inside of a single realm, does Kerberos 5 support the notion of access
control?

For instance, if I define principles A, B, and C inside of a realm,
does Kerberos have a way of enforcing that A can set up a session with
B, but cannot set up a session with C? From reading through the krb5
source code, I get the impression that access control lists are not
part of MIT Kerberos, but something that applications have to layer on
themselves.

Can anyone confirm this?

Thanks in advance for help with this question,
bab
-- 
--
Brian Button	email: 	bbutton@netcom.com, bbutton@hti.net
Houston, TX		
		"Always mount a scratch monkey"


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[4490] in Kerberos

Kerberos and Access Control

daemon@ATHENA.MIT.EDU (Brian Button)Fri Jan 13 22:33:24 1995

daemon@ATHENA.MIT.EDU (Brian Button)
Fri Jan 13 22:33:24 1995