Common keytab file for all the application servers - Is itpossible???
Nikhil Mulley
mnikhil at gmail.com
Tue Jan 3 02:43:21 EST 2006
On 2 Jan 2006 21:24:28 -0800, Viswa <viswanatha.shankaranarayana at gmail.com>
wrote:
>
> I have a proposal. Let me know if this is a good idea to go about!
>
> 1. Generate seperate keytab file for each target.
> 2. Merge the keytabs into a common keytab file.
> 3. While configuring the target make sure they will use only the part
> of the keytab ment for them.
>
> This way the security is also not compromised.
>
> Group,
> Are there any other similar approaches?
>
> Regards
> Viswa
>
I mean.. I had similar thoughts on this.. earlier, but not sure how would
one implement the same.
I mean I do not understand by Merging - in the sense, how would they be
merged and what would be the priority of the keytabs in the merged keytab
file, how would one can use the part of the keytabs in the merged copy ?
Regards..
More information about the Kerberos
mailing list