Kerberizing a unix based application
Richard E. Silverman
res at qoxp.net
Thu Mar 23 14:04:49 EST 2006
>>>>> "ZJ" == "Ziangi Jones" <ziangij at gmail.com> writes:
ZJ> Hi, I have joined a linux machine (Red Hat Linux Enterprise
ZJ> Server) to Windows 2003 Server Domain Controller. I have also
ZJ> configured Kerberos and TGT is received properly (verified using
ZJ> KLIST) & even telnet is working properly.
ZJ> Please answer my 3 questions: 1. Assume i have setup Kerberos
ZJ> successfully; if I log-in from my Windows desktop and try to do
ZJ> telnet to linux machine, then does it mean that i need NOT enter
ZJ> login name & password; I will get the successful telnet prompt.
If you have a kerberized telnet client that uses the Windows Kerberos API
(SSPI).
ZJ> 2. Here, do i need to ensure that login user name has to be SAME
ZJ> in both Linux & 2003 Server AD? Do i need to maintain some kind of
ZJ> mapping?
If they are not the same, just use telnet -l username & authorize the
Windows principal in the target RHLE account with ~/.k5login.
--
Richard Silverman
res at qoxp.net
More information about the Kerberos
mailing list