On Sun, Aug 24, 2003 at 11:19:22AM +0900, Christians, Stefan Mr. wrote: > We are using KERBEROS for our user logins, and it works great ... except > that we are not fully benefiting from single-sign-on possibilities. > For example, if a user wants to wants to read his e-mail, he has to > re-enter his password to have access to the IMAP server (internal server > in the same domain and realm). > Or when he does SSH to another workstation, he also has to re-enter his > password (or use public key authentication). > Is there any way to set up PAM so that IMAP and SSH respect the user's > KERBEROS certificate? No. Install Kerberos-enabled imap and ssh servers, and use Kerberos-aware clients. -- Steve Langasek postmodern programmer
Attachment:
pgp00101.pgp
Description: PGP signature
