[Fed-Talk] kinit with PIV?
[Fed-Talk] kinit with PIV?
- Subject: [Fed-Talk] kinit with PIV?
- From: "Marcus, Allan B" <email@hidden>
- Date: Mon, 22 Aug 2016 17:16:10 +0000
- Thread-topic: kinit with PIV?
Hello,
We are experimenting with PIV authentication for Macs. I can authenticate with my PIV card, and can break the screen saver. We are binding the Macs to our Active Directory domain. When I log in, I get an adtice
directory issued krb ticket, and I can use that ticket to access Exchange (via outlook) or SharePoint via a browser. Unfortunately, I’ve noticed that if that ticket expires and I then break the screen saver, the ticket cannot be renewed and a new ticket is
not issued. I can use kinit on the CLI to get a new windows domain ticket, but I have to use my hard password.
Is there a way to get a new ticket from the active directory using the PIV card, but not having to log out and log in again?
--
Thanks,
Allan Marcus
Los Alamos National Laboratory
505-667-5666
email@hidden
“The good thing about science is that it's true whether or not you believe in it.” ― Neil deGrasse Tyson
|
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden