Kerberos OpenLDAP Frontend

Simon Wilkinson simon at
Fri Oct 5 07:25:43 EDT 2007

On 4 Oct 2007, at 19:02, Booker Bense wrote:

> The only reason to put in a LDAP back end is to simplify the
> account management

One thing I keep thinking about implementing is an LDAP->kadmin  
proxy. You'd still have the KDC database in the current DB format,  
but you'd be able to access it through an overlay on your OpenLDAP  
server, which would translate LDAP actions into kadmin RPCs.


More information about the Kerberos mailing list