[31439] in Kerberos
Re: CISCO and kerberos
daemon@ATHENA.MIT.EDU (Nikos Nikoleris)
Tue Sep 1 12:35:15 2009
From: Nikos Nikoleris <nikos@ece.ntua.gr>
Date: Tue, 01 Sep 2009 17:39:27 +0200
Message-ID: <4A9D402F.1090007@ece.ntua.gr>
Mime-Version: 1.0
X-Complaints-To: usenet@ulysses.noc.ntua.gr
In-Reply-To: <mailman.44.1251818432.12456.kerberos@mit.edu>
X-Originally-To: Nikolay Shopik <shopik@inblock.ru>
To: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Nikolay Shopik wrote:
<snip>
> Hi Nikos,
>
> If I'm not mistaken they don't yet support kerberos for SSH aren't they?
>
Hey Nikolay,
as far as I know cisco supports ssh with kerberos but not in a
"kerberized" way but in a pam way. I mean that I can login with the
password I have for my kerberos principal like
ssh nikos/admin@switch
but I cannot login if I first acquire the ticket with
kinit nikos/admin
and then
ssh nikos/admin@switch
without entering the password again. I don't know if it is supported on
new versions or other versions other than that we are running: Cisco IOS
Software, C3750 Software (C3750-ADVIPSERVICESK9-M), Version 12.2(40)SE,
RELEASE SOFTWARE (fc3)
-- Nikos
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
