[31103] in Kerberos
Heimdal: Delegation + Cross-realm authentication
daemon@ATHENA.MIT.EDU (charan)
Mon May 11 18:18:05 2009
From: charan <v.sricharan@gmail.com>
Date: Mon, 11 May 2009 13:49:16 -0700 (PDT)
Message-ID: <424490af-6082-4a1b-af8d-afaabc945549@d19g2000prh.googlegroups.com>
Mime-Version: 1.0
X-Complaints-To: groups-abuse@google.com
Complaints-To: groups-abuse@google.com
To: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Hi,
Does Heimdal (open source implementation of Kerberos V), support
cross-realm authentication by a service that is delegated to obtain
credentials on behalf of a client?
Following is the use case:
1. Client delegates authentication of credentials to a service
2. The service how has privilege to get credentials / tickets on
behalf of the client (in the same realm).
3. Client access a service on a different (but trusted) realm.
The question is, can the service that is delegated to fetch
credentials on behalf of the client, get the credentials for a
different realm.
Thanks for the help!
Charan
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
