[462] in Kerberos
Background on Ticket Proposal
daemon@TELECOM.MIT.EDU (Ted Anderson)
Thu Jul 28 16:01:30 1988
From: Ted Anderson <ota+@ANDREW.CMU.EDU>
To: kerberos@ATHENA.MIT.EDU
Cc: Mike Kazar <kazar+@ANDREW.CMU.EDU>
I suppose a bit of background on my proposal to change the Kerberos ticket
format would be in order. I have taken over the implementation of a
Kerberos-style authentication server for the Andrew File System. For various
reasons we can't use Kerberos as is, but we'd like to retain as much as
possible. Since all our client/server communication uses RPC we can't use the
Kerberos protocols directly, but ticket level compatibility is still useful.
Specifically, one senario involves having an Andrew File System cell at MIT use
tickets obtained from the Athena Kerberos (with an Athena log program). This
allows a single authentication database to serve both systems at MIT. The
proposal developed during the process of considering the design issues for the
new authentication server and figuring out the Kerberos design document.
I'd appreciate comments on the proposal. My intent is to try and reach
agreement on a compromise ticket format that everyone can use.
Ted Anderson
