Hi, I'm just thinking why SSL must be enabled when using mod_auth_kerb in httpd. Because password will be transferred in encryption by Kerberos. So is SSL used to proect the tickets or anything else? Thanks. Eric