Is a Kerberos principal always a DNS name?
Booker Bense
bbense at slac.stanford.edu
Thu Apr 24 13:42:58 EDT 2008
In article <fupovd$25qp$1 at relay.tomsk.ru>,
Victor Sudakov <vas at mpeks.no-spam-here.tomsk.su> wrote:
>Colleagues,
>
>Is a Kerberos principal always a DNS name? Can't an IP literal be used?
>
It's whatever both sides of the connection argee that it should
be BEFORE the connection is made. DNS names are used by default
since that makes an easy out of band way to get both sides to agree.
You can use IP addrs if you can wrangle both client and server
software into using them. I'm not aware of any standard clients
that will support that kind of usage though.
_ Booker C. Bense
More information about the Kerberos
mailing list