From: Tom Leffingwell (tom@sba.miami.edu)
Date: Mon Mar 22 2004 - 14:42:55 EST
I am looking at implementing a kerberos for some of my Tru64 systems.
The documentation only refers to using LDAP+kerberos to completely manage
all users from a PC.
1) Has anyone implemented this with a non W2k system using the HP provided
SSO subset?
2) Is it possible to only authenticate certain users through kerberos,
while leaving the rest with regular C2 security? The ldap users
deny/allow files seem to serve this purpose, but what if I'm only
interested in keeping that information locally instead of in ldap, while
still using kerberos for the password?
3) I have some PC users that want to be able to use their active directory
password to sign on, but I would rather maintain control of everything
else (including their userid, home directory, etc) locally.
4) Has anyone used the SSO subset for kerberos, but without LDAP?
5) When someone logs in via telnet, etc, does it grant them a ticket
automatically?
6) Does the C2 password become meaningless in a kerberos environment?
Thanks,
Tom
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:49:55 EDT