Cisco VPN 3000 series does not support preauth
Rachel Elizabeth Dillon
red at MIT.EDU
Wed Dec 8 18:42:36 EST 2004
I wasn't privy to the actual conversation; I will try to get further
details and pass them on. It seemed strange to me, but also consistent
with the behavior I was seeing.
-r.
On Wed, Dec 08, 2004 at 06:31:53PM -0500, Ken Raeburn wrote:
> On Dec 8, 2004, at 17:49, Rachel Elizabeth Dillon wrote:
> >A colleague went and asked Cisco about the Kerberos preauthentication
> >issue on VPN 3000 series hardware, and apparently they do not support
> >preauthentication and do not intend to do so. I thought this might be
> >useful to other people on this list, so I sent it along.
>
> What kind of preauth? Compliance with RFC 1510 requires support for
> encrypted-timestamp preauth.
>
> Ken
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://mailman.mit.edu/pipermail/kerberos/attachments/20041208/9c458fe4/attachment.bin
More information about the Kerberos
mailing list