[1245] in Kerberos_V5_Development
Re: kadm5_init, acquiring initial credentials
daemon@ATHENA.MIT.EDU (Barry Jaspan)
Wed May 29 11:15:15 1996
Date: Wed, 29 May 1996 11:15:04 -0400
From: "Barry Jaspan" <bjaspan@MIT.EDU>
To: sommerfeld@orchard.medford.ma.us
Cc: krbdev@MIT.EDU, jik@cam.ov.com
In-Reply-To: <199605290221.CAA07001@orchard.medford.ma.us> (message from Bill Sommerfeld on Tue, 28 May 1996 22:21:24 -0400)
The admin system already sets up the kadmin principals (there's two,
kadmin/admin and kadmin/changepw) to disallow TGT requests. I also
agree with Richard that that is sufficient, and that the kadm5 api
should be willing to use tickets acquired via some other program.
I'll update the spec for version 2 and change the code.
Barry
