Hi all,
I'd like to have certain users (if not, all) use a different Kerberos
realm for authentication in Podcast Producer. At UConn, we have an
enterprise Kerberos service we use for authentication. I'd like to have
Podcast Producer use IDs I create in Open Directory's LDAP service but
authenticate against our enterprise Kerberos realm.
I currently have our all-in-one Podcast Producer XServe set up to be an
Open Directory Master. I've added a new Kerberos realm and made it the
default realm via the Kerberos app in System/Library/CoreServices. I've
created a user ID in Open Directory (which has a matching principal in
our enterprise Kerberos realm). I've added this user ID to a group
which can publish on the Wiki/Blog server. What happens is this -- when
going to the group wiki page, I am prompted for credentials (good), but
the password from the enterprise Kerberos realm doesn't work (bad).
Only the dummy password I put in Open Directory (aka Open Directory's
Kerberos realm) works. Even when I delete Open Directory's Kerberos
realm in the "Edit Realms..." via the Kerberos.app, the Wiki
authentication still goes against the Open Directory Kerberos realm.
Does some Apache module want to use Open Directory's Kerberos realm
*only*, ignoring what's set in the Kerberos.app's "Edit Realms"? (aka
the /Library/Preferences/edu.mit.Kerberos config file)
Any help is appreciated. Thank you!
Tony
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Podcast-producer mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/podcast-producer/email@hidden
This email sent to email@hidden
