KDC query client performance
Simo Sorce
ssorce at redhat.com
Mon Feb 14 14:00:45 EST 2011
On Mon, 14 Feb 2011 18:35:14 +0000
"Roland C. Dowdeswell" <elric at imrryr.org> wrote:
> Also, it might be a better idea in the longer term to write a little
> daemon that runs as root, listens on a UNIX domain socket and
> accepts requests from the krb5 libs to have conversations with
> various KDCs. The advantage of this would be that this daemon
> could keep track of which KDCs are up and perhaps even keep track
> of which ones answer the quickest (and are therefore likely the
> closest), etc.
You can do this separately by creating a locator plugin.
That's what we do with the SSSD project at least, so that the sssd
daemon does the discovery and just tells the krb5 libs what is the ip
address to use for the KDC.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
More information about the krbdev
mailing list