Re: A few questions

calvinw@tower.tandem.com
Tue, 9 May 1995 13:26:22 -0700 (PDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: James Dunn/BTEC/US: "LDAP discussion list"
Previous message: Tim Howes: "Re: A few questions"
In reply to: Tim Howes: "Re: A few questions"

> > 2. I understand UM is utilizing MIT version of Kerberos and that
> > this is not compatible with Transarc's DCE version of Kerberos. Can
> > LDAP and ISODE live under a DCE environment?
>
> We use AFS kerberos. There are two -D's, -DKERBEROS to enable kerberos
> at all, and -DAFSKERBEROS to enable afs kerberos (really only required
> if you compile ud, which needs the different string-to-key function -
> otherwise the two kerberoses are the same). LDAP does not support the
> DCE RPC interface to kerberos, but DCE kerberos supports the regular
> MIT access as well as RPC, so it should work ok.

The security (kerberos) server in the DCE is kerberos version 5, while most
kerberos clients are kerberos version 4, and these two don't interoperate.

/Calvin

Next message: James Dunn/BTEC/US: "LDAP discussion list"
Previous message: Tim Howes: "Re: A few questions"
In reply to: Tim Howes: "Re: A few questions"