[20135] in Kerberos_V5_Development
Re: kcpytkt to copy a service ticket for client principal not
daemon@ATHENA.MIT.EDU (Greg Hudson)
Mon Jun 15 18:48:03 2020
To: Josef Petermann <josef.petermann@eoda.de>,
"krbdev@mit.edu"
<krbdev@mit.edu>
From: Greg Hudson <ghudson@mit.edu>
Message-ID: <c7743ee0-1e83-fb24-34d1-a97f5abc60ba@mit.edu>
Date: Mon, 15 Jun 2020 18:47:42 -0400
MIME-Version: 1.0
In-Reply-To: <AM0PR0402MB378098378A2EE1D94E77E515FB9C0@AM0PR0402MB3780.eurprd04.prod.outlook.com>
Content-Language: en-US
Cc: Alexander Kinz <alexander.kinz@eoda.de>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu
On 6/15/20 5:28 PM, Josef Petermann wrote:
> How can we get kcpytkt to match a credential not matching the default principal? Ideally, the solution would involve supplying the client principal as an additional command line argument to kcpytkt.
We don't build or install kcpytkt except on Windows.
I have been thinking of adding some options from Heimdal's kgetcred to
kvno, including --out-ccache, which initializes a ccache and stores the
retrieved credential into it. Would that be adequate here?
_______________________________________________
krbdev mailing list krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
