MIT Incremental Propagation
Nicolas Williams
Nicolas.Williams at sun.com
Fri Sep 21 16:20:52 EDT 2007
On Fri, Sep 21, 2007 at 03:08:26PM -0500, John Hascall wrote:
> > > Does MIT's current implementation of the Kerberos KDC include
> > > incremental propagation? I know it didn't a long time ago, then there
> > > were CITI patches for it, then those didn't work for awhile. I don't
> > > seem to be able to pinpoint an answer to it.
>
> > There is no incremental propagation distributed with MIT Kerberos.
>
> I haven't studied it all that extensively,
> so correct me if I am wrong, but with the
> new "DAL" stuff there is now an opportunity
> to do a 'proper' job of multi-master KDCs
> (dare I say it) in a "ubik-like" or "AD-like"
> manner.
There are plenty of LDAP servers suitable for backending the KDC that
support incremental and/or multi-master replication.
More information about the Kerberos
mailing list