SASL authentication
Russ Allbery
rra at stanford.edu
Mon Mar 16 18:46:54 EDT 2009
"Henry B. Hotz" <hotz at jpl.nasa.gov> writes:
> That said, I've heard that a Windows DC will not accept an authenticated
> bind except over SSL/TLS. Period. Regardless of whether a SASL
> security layer is negotiated or not.
This has now been fixed in a Microsoft hot fix, I believe. There was
recent additional discussion in the kerberos at mit.edu mailing list. (Note
that this specifically affected Windows 2008, not Windows 2003.)
--
Russ Allbery (rra at stanford.edu) <http://www.eyrie.org/~eagle/>
More information about the krbdev
mailing list