[29017] in Kerberos
Re: Heimdal KDC, Windows XP and local users
daemon@ATHENA.MIT.EDU (Victor Sudakov)
Fri Jan 11 12:45:14 2008
From: Victor Sudakov <vas@mpeks.no-spam-here.tomsk.su>
Date: Fri, 11 Jan 2008 17:29:23 +0000 (UTC)
Message-ID: <fm891j$2g39$1@relay.tomsk.ru>
X-Complaints-To: noc@sibptus.tomsk.ru
X-Comment-To: "Javier Palacios" <javiplx@gmail.com>
To: kerberos@mit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Javier Palacios wrote:
> > BTW what about Unix? Is there a way to automatically create a local
> > user if a Kerberos principal successfully authenticates on the box?
> > Oh well, it is not very useful after all, who in the world needs a
> > Unix user with the same name and different uid on each box...
> You know about NIS, so you know that you may have he same uid in
> different boxes.
Sure. But this again means the toil of maintaining two databases: the
NIS map and the KDC database.
> And youger people who never heard about NIS do know
> about nss-ldap.
And again, why would we want two databases: LDAP and Kerberos?
> And pam_mkhomedir cares about "local profile" creation.
Oh yes, I use it on NIS clients.
It is much better for my purposes than NFS-mounted homes.
--
Victor Sudakov, VAS4-RIPE, VAS47-RIPN
2:5005/49@fidonet http://vas.tomsk.ru/
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
