Porting k5start to Heimdal
Russ Allbery
rra at stanford.edu
Sat Jun 4 17:02:28 EDT 2005
Chaskiel M Grundman <cg2v at andrew.cmu.edu> writes:
> On Wed, 4 May 2005, Russ Allbery wrote:
>> Chaskiel M Grundman <cg2v at andrew.cmu.edu> writes:
>>> It doesn't seem to be inheriting any appdefaults or libdefaults (It
>>> acquires 10 hour, non-forwardable, non-addressless tickets, despite my
>>> configuration settings), but I know how to fix that if I get motivated
>>> to do so.
>> How? I was assuming that the Kerberos libraries would take care of
>> that for me, but apparently not. (Do they even on MIT, or does one
>> always have to do that manually?)
> Under heimdal, the mechanism is:
> void
> krb5_get_init_creds_opt_set_default_flags (
> krb5_context /*context*/,
> const char */*appname*/,
> krb5_const_realm /*realm*/,
> krb5_get_init_creds_opt */*opt*/);
> It will acquire defaults from the appname's section of [appdefaults],
> the realm's section in [realms] (I think), and the [libdefaults]
> section, in that order.
This worked great. Thanks!
--
Russ Allbery (rra at stanford.edu) <http://www.eyrie.org/~eagle/>
More information about the Kerberos
mailing list