[5964] in Kerberos
Question: v4->v5 stuff (am I on crack?) (DCE, V4, V5, Woah!)
daemon@ATHENA.MIT.EDU (Tad Hunt )
Thu Oct 5 18:27:29 1995
To: kerberos@MIT.EDU
Date: 5 Oct 1995 20:39: 4 GMT
From: tad@csh.rit.edu (Tad Hunt )
We have a bunch of DEC 700 series terminal servers which are able to
kerberos IV authentication... We're running DCE (and therefore kerberos V)
for user authentication on our network. What we would like to do is to be
able to have the kerberos IV talking terminal servers authenticate users
through their DCE account.
I took a look at the krb524 daemon, but from the looks of it, I still
need to modify the kerberos IV client to change the call that gets a kerberos
IV ticket to a call to get a kerberos V ticket followed by a call to convert
the V5 ticket to a V4 ticket. Unfortunatly, I can't modify the terminal
server to do this...
Here's where my thinking begins to get scary:
If I ripped the guts out of a kerberos IV server, and replaced them with
a call to get a kerberos V ticket, followed by a call to convert the ticket
to a V4 ticket (via krb524d), and passed that ticket back to the terminal
server, would everything be happy happy?
Or, am I just on crack?
Thanks!
-Tad
