Determening the number of clients per KDC
Russ Allbery
eagle at eyrie.org
Tue Apr 17 18:20:03 EDT 2018
Mark Pröhl <mark at mproehl.net> writes:
> On 04/16/2018 05:51 PM, Russ Allbery wrote:
>> ... Clients aren't going to generally all try to get a ticket at the
>> same time, due to ticket caching, so that scales to a lot of clients.
> I have only seen JAVA/JAAS clients caching the TGT and not the service
> tickets. Especially in Hadoop environments this leads to much more TGS
> traffic than in "classical" Kerberos environments. 1000 rps are not
> unusual.
Ah, interesting! (Also incredibly broken behavior....)
--
Russ Allbery (eagle at eyrie.org) <http://www.eyrie.org/~eagle/>
More information about the Kerberos
mailing list