[krbdev.mit.edu #6748] kadmind and kpropd only support one realm at a time

The RT System itself via RT rt-comment at krbdev.mit.edu
Thu Jul 1 00:27:20 EDT 2010 

>From krb5-bugs-incoming-bounces at PCH.mit.edu  Thu Jul  1 00:27:20 2010
Return-Path: <krb5-bugs-incoming-bounces at PCH.mit.edu>
Received: from pch.mit.edu (PCH.MIT.EDU [18.7.21.90])
	by krbdev.mit.edu (Postfix) with ESMTP id 193043E72A;
	Thu,  1 Jul 2010 00:27:18 -0400 (EDT)
Received: from pch.mit.edu (pch.mit.edu [127.0.0.1])
	by pch.mit.edu (8.13.6/8.12.8) with ESMTP id o614RIAx004019;
	Thu, 1 Jul 2010 00:27:18 -0400
Received: from mailhub-dmz-3.mit.edu (MAILHUB-DMZ-3.MIT.EDU [18.9.21.42])
	by pch.mit.edu (8.13.6/8.12.8) with ESMTP id o5UITpsk001916
	for <krb5-bugs-incoming at PCH.mit.edu>; Wed, 30 Jun 2010 14:29:51 -0400
Received: from dmz-mailsec-scanner-4.mit.edu (DMZ-MAILSEC-SCANNER-4.MIT.EDU
	[18.9.25.15])
	by mailhub-dmz-3.mit.edu (8.13.8/8.9.2) with ESMTP id o5UIRQRc005204
	for <krb5-bugs at mit.edu>; Wed, 30 Jun 2010 14:29:50 -0400
X-AuditID: 1209190f-b7bd9ae0000009fe-33-4c2b8d1d3afd
Received: from mx1.redhat.com (mx1.redhat.com [209.132.183.28])
	by dmz-mailsec-scanner-4.mit.edu (Symantec Brightmail Gateway) with
	SMTP id 52.9B.02558.D1D8B2C4; Wed, 30 Jun 2010 14:29:50 -0400 (EDT)
Received: from int-mx08.intmail.prod.int.phx2.redhat.com
	(int-mx08.intmail.prod.int.phx2.redhat.com [10.5.11.21])
	by mx1.redhat.com (8.13.8/8.13.8) with ESMTP id o5UITnOj020925
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK)
	for <krb5-bugs at mit.edu>; Wed, 30 Jun 2010 14:29:49 -0400
Received: from blade.bos.redhat.com (blade.bos.redhat.com [10.16.0.23])
	by int-mx08.intmail.prod.int.phx2.redhat.com (8.13.8/8.13.8) with ESMTP
	id o5UITm1r027243
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO)
	for <krb5-bugs at mit.edu>; Wed, 30 Jun 2010 14:29:48 -0400
Received: from blade.bos.redhat.com (blade.bos.redhat.com [127.0.0.1])
	by blade.bos.redhat.com (8.14.4/8.14.3) with ESMTP id o5UITlHw029839
	for <krb5-bugs at mit.edu>; Wed, 30 Jun 2010 14:29:47 -0400
Received: (from nalin at localhost)
	by blade.bos.redhat.com (8.14.4/8.14.4/Submit) id o5UITlYe029838;
	Wed, 30 Jun 2010 14:29:47 -0400
Date: Wed, 30 Jun 2010 14:29:47 -0400
Message-Id: <201006301829.o5UITlYe029838 at blade.bos.redhat.com>
To: krb5-bugs at mit.edu
Subject: support for servicing multiple realms in kadmind and kpropd?
From: nalin at redhat.com
X-send-pr-version: 3.99
X-Scanned-By: MIMEDefang 2.67 on 10.5.11.21
X-Brightmail-Tracker: AAAAAA==
X-Mailman-Approved-At: Thu, 01 Jul 2010 00:27:15 -0400
X-BeenThere: krb5-bugs-incoming at mailman.mit.edu
X-Mailman-Version: 2.1.6
Precedence: list
Reply-To: nalin at redhat.com
Sender: krb5-bugs-incoming-bounces at PCH.mit.edu
Errors-To: krb5-bugs-incoming-bounces at PCH.mit.edu

>Submitter-Id:	net
>Originator:	Nalin Dahyabhai
>Organization:
	
>Confidential:	no
>Synopsis:	kadmind and kpropd only support one realm at a time
>Severity:	non-critical
>Priority:	low
>Category:	krb5-admin
>Class:		change-request
>Release:	1.8.2
>Environment:
	
System: Linux pillbox 2.6.35-0.13.rc3.git2.fc14.x86_64 #1 SMP Mon Jun 28 19:27:35 UTC 2010 x86_64 x86_64 x86_64 GNU/Linux
Architecture: x86_64

While krb5kdc supports servicing multiple realms from a single process
listening on one port, kadmind and kpropd don't seem to be able to do
so without running multiple instances of each, each instance being told
to listen on a different port number and service requests for a
different realm.  We'd like to be able to have kadmind and kpropd behave
more like krb5kdc and support multiple realms.

More information about the krb5-bugs mailing list