[2614] in Kerberos
Mixing V4 & V5
daemon@ATHENA.MIT.EDU (Joe Ramus)
Fri Mar 5 18:07:24 1993
Date: Fri, 5 Mar 93 14:48:11 PST
From: ramus@nersc.gov (Joe Ramus)
To: kerberos@Athena.MIT.EDU
I am a bit confused on how to set things up for a mixed site
where some hosts have Kerberos V4 & some have V5.
I have the Sandia V5 KDC which is able to give a TGT to a user on
a V4 host. But what can I do with the ticket? For example, I would
like to use telnet on the V4 host and do an Authenticated Login on
a V5 host. The telnetd on V5 knows how to do V5 but not V4. Perhaps
I can rebuild the V5 telnetd so it will do either V4 or V5.
In the reverse direction, can the V5 telnet client use the V4 protocol
to connect to a V4 host?
I would also like to use the r-tools (rlogin, rsh, rcp).
Are the V5 versions of the r-tools able to work with a V4 host?
There is also the /etc/srvtab file on each host and the related
principals in the KDC. For a version 4 host, I assume that I put
an entry like this in the V5 KDC:
rcmd.V4host@myrealm
For a version 5 host, it looks like this:
rcmd/V5host.nersc.gov@myrealm
Joe Ramus NERSC Livermore (510) 423-8917 ramus@nersc.gov
