with "ntlm_auth" is possible configure ssl without kerberos ?
Thank you very much for your help
I have problem with AD and ntlm_auth.
I've got a Kerberos v5 server set up on a Linux machine, and it's working very well when connecting to other hosts (using samba, ldap or ssh), for which there are principals in my kerberos database.
Can I use kerberos to authenticate against localhost though? And if I can, are there reasons why I shouldn't? I haven't made a kerberos principal for localhost.
i've been having issues where calls to the LogonUser Windows API function is falling back to NTLM authentication, rather than using the preferred, default, Kerberos authentication.
Researching the problem, a guy has a suggestion:
The thing to do is to figure out why the code is using NTLM instead of
Kerberos in the first place since Kerberos is the default and to try to see
if it can be
I'm currently trying to set up an integrated Kerberos V/LDAP system for authentication/authorization.
I tried to configure nis with kerberos authentication, and i think i configured my server correctly coz i already configured nis with kerberos earlier and it was working fine but not today i getting error.
I'm trying to test a Kerberos-based SSO solution for our Java app. Unfortunately, I don't have a Windows domain at my disposal to do so.
As per subject i have configure LDAP and it's working fine.
Canonical has announced that quite a few Kerberos vulnerabilities have been found and fixed in its Ubuntu 14.04 LTS, Ubuntu 12.04 LTS, and Ubuntu 10.04 LTS operating systems.
The company has just released a new update for Kerberos, which is actually the MIT Kerberos Network Authentication Protocol, for anyone interested.
“It was discovered that Kerberos incorrectly handled certain invalid
I'm not very practised in using Kerberos. But I want to implement a single-sign-on with Kerberos.
The aim I want to achieve is, that you only have to login with Windows 7 and then open the browser and there is no other authetification required, e.g. for a intranet. Is this possible?
Kerberos is using tickets. The first step is geting the ticket granting ticket, isn't it?