Using non kerberized services on Solaris9 client

Gerald (Jerry) Carter jerry at samba.org
Tue Jun 29 08:44:12 EDT 2004


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Judi Buff wrote:

| But, I'm not sure what to do next so that my
| users will authenticate with their kerberos password,
| but use non-kerberized services such as telnet, ftp, and
| ssh.  In other words, when they type the command telnet
| servername.domain.edu I want it to accept the kerberos
| password anddestroy the ticket when they log out.
| Can this be done?

There are several core clients and servers included
with the MIT distribution.  There's also gssapi support
in the latest OpenSSH release (see man ssh_config for details).

I've seen but not had a chance to play with the gssapi module
for proftpd (http://gssmod.sf.net/)

And then there's always the GSSAPI SASL mechanism for things that
support SASL (e.g. OpenLDAP).

Hope this helps.



cheers, jerry
- ----------------------------------------------------------------------
Hewlett-Packard            ------------------------- http://www.hp.com
SAMBA Team                 ---------------------- http://www.samba.org
GnuPG Key                  ---- http://www.plainjoe.org/gpg_public.asc
"...a hundred billion castaways looking for a home." ----------- Sting
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFA4WQbIR7qMdg1EfYRAh2AAKDo/SE2/6Z+WgDO8gVH7CmSqMZcfQCfTU0J
3v9ydv+Y6r/rOOP6dektqGY=
=8RvX
-----END PGP SIGNATURE-----


More information about the Kerberos mailing list