Login usecase

Brandon Allbery ballbery at sinenomine.net
Mon Jul 18 10:45:01 EDT 2016


You are going to have to describe what you are trying to do in more detail. Keytabs are not normally used for this purpose, except in the case of automated procedures (e.g. cron) that need to log in to a service as if they are a user. Perhaps you have confused keytabs (“passwords” on disk) with ccaches (ephemeral service credentials, which may or may not be on disk and typically expire in a relatively short time)? 

On 7/17/16, 16:04, "kerberos-bounces at mit.edu on behalf of Aneela Saleem" <kerberos-bounces at mit.edu on behalf of aneela at platalytics.com> wrote:

    Hi all,
    
    If a user logs into any kerberized Application, using Krb5LoginModule,
    there is a function loginFromKeyTab. Client should have the key tab file to
    login to application. But I think this is very insecure way of login.
    Anyone who cloud access your key tab file then login to application. Is
    there any appropriate way to login to system. I don't understand How to do
    this. I'm stuck
    
    Thanks
    ________________________________________________
    Kerberos mailing list           Kerberos at mit.edu
    https://mailman.mit.edu/mailman/listinfo/kerberos
    




More information about the Kerberos mailing list