[Date Prev][Date Next] [Chronological] [Thread] [Top]

Multiple Kerberos Domain

In order ro reduce costs, i have a single machine server handling a
set of kerberos domains
One domain for each of my clients. Now some client want to have access
to OpenLDAP service.

My initial ideia is to create a "root" node for each client and have
access to anything below this node being authenticated under the
client kerberos domain. For instance:

*,o=org_0  will authenticate against kerberos realm org_0.com
*,o=org_1 will authenticate against kerberos realm xxx.net

So, i would have to create a ldap/xxx@realm for each of the realm
kerberos. Does openldap support such? If not, how could i handle this
task ?

Thank you a lot.