de facto inline mutual auth via krb5_mk_req / krb5_rd_req?

Sam Hartman hartmans at MIT.EDU
Fri Feb 15 13:10:01 EST 2002

You should call krb5_mk_rep after krb5_RD_REQ on the server side.
Send the result to the client, which calls krb5_rd_rep to read the
result and verify it.  You do want to pass in the mutual flag into
krb5_mk_req on the client.

More information about the krbdev mailing list