Kerberizing a unix based application

Richard E. Silverman res at
Thu Mar 23 14:04:49 EST 2006

>>>>> "ZJ" == "Ziangi Jones" <ziangij at> writes:

    ZJ> Hi, I have joined a linux machine (Red Hat Linux Enterprise
    ZJ> Server) to Windows 2003 Server Domain Controller. I have also
    ZJ> configured Kerberos and TGT is received properly (verified using
    ZJ> KLIST) & even telnet is working properly.

    ZJ> Please answer my 3 questions: 1. Assume i have setup Kerberos
    ZJ> successfully; if I log-in from my Windows desktop and try to do
    ZJ> telnet to linux machine, then does it mean that i need NOT enter
    ZJ> login name & password; I will get the successful telnet prompt.

If you have a kerberized telnet client that uses the Windows Kerberos API

    ZJ> 2. Here, do i need to ensure that login user name has to be SAME
    ZJ> in both Linux & 2003 Server AD? Do i need to maintain some kind of
    ZJ> mapping?

If they are not the same, just use telnet -l username & authorize the
Windows principal in the target RHLE account with ~/.k5login.

  Richard Silverman
  res at

More information about the Kerberos mailing list