Data privacy in KDC

Yegui Cai caiyegui at
Mon Mar 4 11:45:11 EST 2019

Hi all.

I have some questions regarding data privacy in KDC.
1. If I have multiple tenants sharing the same KDC (say, a tenant is mapped
into a realm), how KDC make sure that the data is segregated between realms?
2. Similar questions regarding logs. Is there any way to segregate logs
between different realms?
3. If I use the default data storage (Berkeley DB if my understanding is
correct), how data is encrypted at rest?

Thanks a lot!
Yegui Cai

More information about the Kerberos mailing list