OTPOverRadius IPA vs Krb

Dmitri Pal dpal at redhat.com
Mon Jun 10 14:35:56 EDT 2013

On 06/10/2013 02:21 PM, Henry B. Hotz wrote:
> The project page references an otp "user string" that needs to be set.  Is this something that can be set with kadmin, or is it strictly an IPA thing?
> ------------------------------------------------------
> The opinions expressed in this message are mine,
> not those of Caltech, JPL, NASA, or the US Government.
> Henry.B.Hotz at jpl.nasa.gov, or hbhotz at oxy.edu
> _______________________________________________
> krbdev mailing list             krbdev at mit.edu
> https://mailman.mit.edu/mailman/listinfo/krbdev
It is not an IPA thing. The string should be manageable in KDB via
kadmin in a pure kerberos environment without IPA.
It is not required to be set.
It effectively allows you to define the configuration on per user basis
and override user login if needed.

Thank you,
Dmitri Pal

Sr. Engineering Manager for IdM portfolio
Red Hat Inc.

Looking to carve out IT costs?

More information about the krbdev mailing list