pkinit updates

Jim Rees rees at
Tue Dec 12 20:04:50 EST 2006

Right now we just use the first cert.  We're going to fix it so that there
is some sort of intelligent decision.  Olga has some ideas about that.  At
the very least we need to ignore certs that don't have corresponding private
keys capable of signing.

More information about the krbdev mailing list