Enabling anonymous in a realm

Sam Hartman hartmans at MIT.EDU
Thu Dec 17 11:09:22 EST 2009

In my current code, it happens that creating a WELLKNOWN/ANONYMOUS
principal in a given realm allows that realm to start serving anonymous
authentication if the realm also has pkinit enabled.

I think that's OK; it is possible that someone has a principal of that
name for another purpose, but the probability seems rather small.


More information about the krbdev mailing list