kerberos and smartphone clients
Nikolay Shopik
shopik at inblock.ru
Fri Feb 5 08:50:49 EST 2010
Hello everyone,
I'm in middle of process making my mail server Kerberized. Currently my
infrastructure is only password based, but I plan move to PKINIT thus
using certificate based authentication. Afterward I though about my
smartphone clients who use email on their phones this is exclusively
iPhone users.
So this makes me think I should leave regular password based
authentication for these mobile clients, which isn't great because you
have to manage two separate db for logins/passwords. In same time I
though every mobile phone have smart card already which is SIM card,
there even EAP-SIM allowing use it to authenticate to wireless networks.
So what best way to accomplish this task, without making huge pain when
managing logins/passwords?
More information about the Kerberos
mailing list