[28757] in Kerberos
Re: Multiple TGT's to the same principal.
daemon@ATHENA.MIT.EDU (John Hascall)
Tue Nov 20 09:05:58 2007
To: Rogerio Ferreira da Cunha <rogerio.cunha@gmail.com>
In-reply-to: Your message of Tue, 20 Nov 2007 05:03:36 -0800.
<fcb3ad1d-658e-4063-ac29-d7e3747329dd@w34g2000hsg.googlegroups.com>
Date: Tue, 20 Nov 2007 08:05:36 CST
Message-ID: <23934.1195567536@malison.ait.iastate.edu>
From: John Hascall <john@iastate.edu>
Cc: kerberos@mit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
> Hi,
>
> Is it possible to request more than one TGT , if multiple servers
> share the same principal and care to don't send requests with the same
> timestamp?
Typically, servers do not request tickets (including TGTs) at all
unless they are also functioning as a client. Servers keep their
key in local storage.
If a client needs to talk to multiple servers that share the same
principal, then it needs only one TGT (and one service ticket).
> I'm working to integrate the SIP protocol with Kerberos, as a option
> for a Key Management Protocol like MIKEY, to provide a "share key by
> demand".
John
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
