[14631] in Kerberos
Re: How to configure a Kerberos 5 Linux client of a Solaris KDC server
daemon@ATHENA.MIT.EDU (Ken Hornstein)
Fri Jul 6 10:38:13 2001
Message-Id: <200107061431.f66EV1112522@ginger.cmf.nrl.navy.mil>
To: Wyllys Ingersoll <Wyllys.Ingersoll@Eng.Sun.COM>
cc: kerberos@MIT.EDU
In-reply-to: Your message of "Fri, 06 Jul 2001 09:17:32 EDT."
<200107061314.f66DE9U267953@jurassic.eng.sun.com>
Date: Fri, 06 Jul 2001 10:30:58 -0400
From: Ken Hornstein <kenh@cmf.nrl.navy.mil>
>You cannot use an MIT-based 'kadmin' client with a SEAM based KDC because
>the RPC protocol used by the MIT admin program is incompatible with the
>RPC protocol used by SEAM. SEAM uses RPCSEC_GSS (RFC 2743) and MIT uses
>an older, non-standard, secure RPC protocol.
I always felt this was unfortunate, because this pretty much makes it
manditory that you NOT use SEAM as a server if you want any sort of
interoperability.
--Ken
