FW: GSSAPI oid
Douglas E. Engert
deengert at anl.gov
Thu Jun 2 15:34:36 EDT 2005
I have the Solaris sshd working with gssapi-with-mic, from
other OpenSSH and PuTTY and don't get this message.
Wachdorf, Daniel R wrote:
> I sent this out yesterday but didn't see it show up. I also added
> krbdev at mit.edu <mailto:kerbdev at mit.edu> .
>
> -dan
>
>
> _____________________________________________
> From: Wachdorf, Daniel R
> Sent: Wednesday, June 01, 2005 7:53 AM
> To: 'ietf-ssh at netbsd.org'
> Cc: Machin, Glenn D
> Subject: GSSAPI oid
>
> I have been doing some testing with the SSH implementation on Solaris 10
> and when doing gssapi-with-mic (Kerb 5) I keep getting the following
> error message:
>
> debug1: Client offered gssapi userauth with { 1 2 840 113554 1 2 2 }
> (unsupported)
>
> I see this error when using our implementation of gssapi-with-mic and
> also openSSH gssapi-with-mic.
>
> Does anyone here know about the functionality of the gssapi-with-mic
> implementation within Solaris 10. Does it include Kerberos?
Yes it does.
I have the Solaris sshd working with gssapi-with-mic, from
other OpenSSH and PuTTY and don't get this message.
Do you have the host key file in /etc/krb5/krb5.keytab
> Is it just
> an OID issue (I believe there used to be a bad OID in the openSSH
> patch).
>
> Thanks.
>
> -dan
>
> --------------------------------------
> Daniel Wachdorf
> drwachd at sandia.gov
> Sandia National Laboratories
> Cyber Security Technologies
> 505-284-8060
>
>
> _______________________________________________
> krbdev mailing list krbdev at mit.edu
> https://mailman.mit.edu/mailman/listinfo/krbdev
>
>
>
--
Douglas E. Engert <DEEngert at anl.gov>
Argonne National Laboratory
9700 South Cass Avenue
Argonne, Illinois 60439
(630) 252-5444
More information about the krbdev
mailing list