[28041] in Kerberos

home help back first fref pref prev next nref lref last post

Passwordless access to kadmin?

daemon@ATHENA.MIT.EDU (Bryan K. Wright)
Tue Jul 17 10:06:05 2007

From: "Bryan K. Wright" <bryan@ayesha.phys.virginia.edu>
Date: Tue, 17 Jul 2007 13:52:44 +0000 (UTC)
Message-ID: <f7ihjc$ort$1@murdoch.acc.Virginia.EDU>
X-Complaints-To: abuse@Virginia.EDU
To: kerberos@mit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu

Hi folks,

	I'm new to kerberos, and I'm trying to figure out how
to invoke kadmin from a web-based script, without prompting for
the root/admin password.  (FWIW, this is part of an account-
migration scheme.  Users will authenticate with their NIS 
credentials, then the script will create a kerberos principal
for them.)

	I realize that I could just use "kadmin -w" and stick
the password in plaintext into the script, but I'd rather not
have to do that.  Is there a more secure way to do this?

					Thanks in advance,
					Bryan

-- 
========================================================================
Bryan Wright              |"If you take cranberries and stew them like 
Physics Department        | applesauce, they taste much more like prunes
University of Virginia    | than rhubarb does."  --  Groucho 
Charlottesville, VA  22901|			
(434) 924-7218            |         bryan@virginia.edu
========================================================================
________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos

home help back first fref pref prev next nref lref last post