[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDAPv3: The OpenLDAP/Kerberos/SASL soup (was Kerberos andDIGEST-MD5)

* Quanah Gibson-Mount (quanah@stanford.edu) wrote:
> We wrote our own utility that downloads the keys over an encrypted channel 
> to the target system.  It validates the calls using the user's Kerberos 
> principal.  It allows for multiple people to be on the ACL for a keytab, 
> and it allows for multiple groups (which can contain multiple people) to be 
> on the ACL for a keytab.

Funny question, don't suppose that's open-source and available
somewhere?  I do it by hand right now, which isn't too big a deal
because I've only got a few boxes, but such a utility seems like it'd be


Attachment: signature.asc
Description: Digital signature