Andrey Ivanov wrote:
Newer versions of MIT are better at this - they have more support for pluggable databases.Hi, I was wondering if anyone tried a configuration with Kerberos using LDAP as database. After some searching it seems that MIT kerberos is not capable to do that.
That is correct. I suppose Heimdal could be hacked to use a regular tcp socket instead of the ldapi interface.However, Heimdal has a special option for that. The only problem is that this option is applicable only to openldap and only to unix socket connections. At least that's what is told in the doc and in numerous howtos.
It's not included with Fedora DS, but you could easily convert it and add it.There is also a special schema extension for storing these data in openLDAP. I haven't found these objects (krb* or kerberos*) in FDS schema....
Can anyone tell anything about a possibility of using Kerberos with the key/principals database stored in Fedora Directory Server, please? Thank you Andrey Ivanov tel +33-(0)1-69-33-99-24 fax +33-(0)1-69-33-99-55 Direction des Systemes d'Information Ecole Polytechnique 91128 Palaiseau CEDEX France -- Fedora-directory-users mailing list Fedora-directory-users@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-directory-users
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
-- Fedora-directory-users mailing list Fedora-directory-users@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-directory-users
