[33236] in Kerberos
Re: Primary server with MIT Kerberos and slave with Heimdal
daemon@ATHENA.MIT.EDU (Russ Allbery)
Sat Feb 26 21:04:26 2011
From: Russ Allbery <rra@stanford.edu>
To: carlopmart <carlopmart@gmail.com>
In-Reply-To: <4D692EA5.3060902@gmail.com> (carlopmart@gmail.com's message of
"Sat, 26 Feb 2011 17:47:33 +0100")
Date: Sat, 26 Feb 2011 18:04:12 -0800
Message-ID: <87hbbqjkrn.fsf@windlord.stanford.edu>
MIME-Version: 1.0
Cc: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
carlopmart <carlopmart@gmail.com> writes:
> Is it possible to have a primary KDC with MIT kerberos and a slave KDC
> with Heimdal (FreeBSD)? Are compatible to replicate data, sign on, etc??
Yes, but it's not entirely straightforward. The database propagation
protocol is not compatible, but the dump format for MIT can be loaded by
Heimdal. What we did while running a mixed realm was to install kpropd on
the Heimdal slave and configure it to save the dump file to disk and then
run hprop on it to load it, which worked reasonably well.
--
Russ Allbery (rra@stanford.edu) <http://www.eyrie.org/~eagle/>
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
