Forwardable tickets - need help
egrama
egrama at gmail.com
Sat Sep 25 09:59:35 EDT 2010
Nico, thank you for your help!
We are not using NAT, so I am not concerned about possible trouble
caused by using IP addresses
to control where a ticket can be used from.
I tried playing with the noaddresses option in krb5.conf: if I request
a ticket with address I get one, if I request one without I also get
one.
I would like to restrict this at kdc level so only tickets with
address are issued. Any idea if it can be done and how?
Emil
More information about the Kerberos
mailing list