MIT Kerberos LDAP backend
Roberto C. Sánchez
roberto at connexer.com
Fri Nov 2 15:47:10 EDT 2007
On Fri, Nov 02, 2007 at 12:03:50PM +0000, John Gilbertson wrote:
> Hi, we're looking into trying to integrate Kerberos with our existing
> user authentication/authorization systems, after seeing that there was
> an LDAP integration option, since all of our user data is available via
> LDAP.
>
> However on further reading I'm not 100% clear on how the integration
> works. Is it possible to just use the LDAP integration for user
> authentication without having to give Kerberos write access to LDAP?
>
> If write access is required, what information is stored in LDAP, and
> where? As extra data in a user's nod,e or in a separate subtree?
>
I don't think that write access is a requirement. That is, I have not
had to implement it like that. Here is the HOWTO I followed (more or
less):
http://aput.net/~jheiss/krbldap/howto.html
Regards,
-Roberto
--
Roberto C. Sánchez
http://people.connexer.com/~roberto
http://www.connexer.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://mailman.mit.edu/pipermail/kerberos/attachments/20071102/987e39f1/attachment.bin
More information about the Kerberos
mailing list