[31102] in Kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Principal for Apache httpd vhost

daemon@ATHENA.MIT.EDU (Simon Wilkinson)
Mon May 11 15:52:40 2009

Message-Id: <B89E3565-3B5B-4756-9937-9C84993EBDEB@sxw.org.uk>
From: Simon Wilkinson <simon@sxw.org.uk>
To: "Richard E. Silverman" <res@qoxp.net>
In-Reply-To: <m2y6t3xzdu.fsf@darwin.oankali.net>
Mime-Version: 1.0 (Apple Message framework v930.3)
Date: Mon, 11 May 2009 20:52:10 +0100
Cc: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu

On 11 May 2009, at 19:34, Richard E. Silverman wrote:
>
>    Frank> What is the correct behavior and configuration?  Thanks for
>    Frank> your help.

If you don't control your clients, then you want to add a principal  
for every name that a client may use to reach your server. And then  
use the 'KrbServiceName Any' option to mod_auth_kerb to allow it to  
use any name contained within that keytab.

S.

________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[31102] in Kerberos

Re: Principal for Apache httpd vhost

daemon@ATHENA.MIT.EDU (Simon Wilkinson)Mon May 11 15:52:40 2009

daemon@ATHENA.MIT.EDU (Simon Wilkinson)
Mon May 11 15:52:40 2009