[791] in Kerberos
Questions on Kerberos usage
daemon@TELECOM.MIT.EDU (Bruce Cole)
Fri Sep 8 12:27:02 1989
From: cole@CS.WISC.EDU (Bruce Cole)
To: kerberos@ATHENA.MIT.EDU
Cc: cole@CS.WISC.EDU
I would like to replace Unix authentication with Kerberos authentication
on the Unix machines in our department. Unfortunately, I have run into
some technical problems:
Our department has an existing user community of thousands of users. How
can I get all of these users added to the Kerberos master database? The Athena
Technical Plan mentions a hack whereby users set their passwords using a
public account. This does not seem practical for an existing user community
(with existing files to be compromised).
We sometimes run software in unattended modes which distribute files
to remote machines. How can I use kerberos to authenticate such file
distributions?
Can something like rkinit be written that does not require a user to
retype their password? It seems to me that possessing Kerberos credentials
to login to a remote host as some user should be sufficient to obtain a ticket
granting ticket for that user on the remote host.
