hi all,
is there nothing in kerberos to allow/deny tickets per each user for
services?
Ex.: Allow user1 at REAL ftp/server1 at REALM and telnet/server1 at REALM
but DENY user2 at REALM telnet/server1 at REALM and only ALLOW
ftp/server1 at REALM
(technical there would be no problem cause you get a ticket for every
service from the kdc).
greetings,
ulrich