[29015] in Kerberos
Re: Heimdal KDC, Windows XP and local users
daemon@ATHENA.MIT.EDU (Victor Sudakov)
Fri Jan 11 08:30:15 2008
From: Victor Sudakov <vas@mpeks.no-spam-here.tomsk.su>
Date: Fri, 11 Jan 2008 13:03:27 +0000 (UTC)
Message-ID: <fm7pev$21r3$1@relay.tomsk.ru>
X-Complaints-To: noc@sibptus.tomsk.ru
X-Comment-To: "Javier Palacios" <javiplx@gmail.com>
To: kerberos@mit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Javier Palacios wrote:
> > > And it is extremely easy to tweak the scap code to just create the
> > > user account instead of looking up LDAP to check that user actually
> > > exists.
> >
> > Perhaps it is easy, but anyway it would mean installing third party
> > software to Windows workstations, which I was trying to avoid.
> And you really hope that Microsoft wil support non-microsoft KDC out
> of the box?
They already support it. The only issue is local user/profile creation.
BTW what about Unix? Is there a way to automatically create a local
user if a Kerberos principal successfully authenticates on the box?
Oh well, it is not very useful after all, who in the world needs a
Unix user with the same name and different uid on each box...
> Even the ksetup.exe is not on the base bundle but in support toos.
This seems reasonable. There are a lot of useful utilities in support
tools, however those utilities are not meant for an average user.
--
Victor Sudakov, VAS4-RIPE, VAS47-RIPN
2:5005/49@fidonet http://vas.tomsk.ru/
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
