Mailing Lists: Apple Mailing Lists
Image of Mac OS face in stamp
 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Apache Realms to OD/Kerb


On Aug 11, 2005, at 12:35 PM, Ed Pastore wrote:

Yep, I do klist -ke and see three for http... Triple DES cbc mode with HMAC/sha1, ArcFour with HMAC/md5, and DES cbc mode with CRC-32. There wouldn't need to be separate entries for https, would there? I assume not since Kerberos requires https anyway.

It seems like the problem is in the realm. Kerb is working for everything else. I have a realm set up to authenticate by Kerb and to only allow members of a particular OD group. But when a member of that group tries to hit that realm, Apache says they have the wrong credentials.

After you attempt to connect to you have a service ticket for http, even though you weren't allowed in?

Is anyone successfully controlling Apache realms through Kerberos? 

Yes, set it up a few times.

Joel

www.afp548.com
email@hidden

_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden

This email sent to email@hidden
References: 
 >Apache Realms to OD/Kerb (From: Ed Pastore <email@hidden>)
 >Re: Apache Realms to OD/Kerb (From: Ed Pastore <email@hidden>)
 >Re: Apache Realms to OD/Kerb (From: Joel Rennich <email@hidden>)
 >Re: Apache Realms to OD/Kerb (From: Ed Pastore <email@hidden>)
 >Re: Apache Realms to OD/Kerb (From: Michael Bartosh <email@hidden>)
 >Re: Apache Realms to OD/Kerb (From: Ed Pastore <email@hidden>)



Visit the Apple Store online or at retail locations.
1-800-MY-APPLE

Contact Apple | Terms of Use | Privacy Policy

Copyright © 2007 Apple Inc. All rights reserved.