Dear friends,
Might I ask if MIT Kerberos KDC supports Constrained Delegation (S4U2Self
and S4U2Proxy) feature natively, or if additional back-end (for example,
LDAP) required for it?
I am new to Kerberos area, and could not find any documentation about this.
Please kindly let me know if the mail
On 08/02/2017 07:43 AM, Yu Yu wrote:
> Might I ask if MIT Kerberos KDC supports Constrained Delegation (S4U2Self
> and S4U2Proxy) feature natively, or if additional back-end (for example,
> LDAP) required for it?
The LDAP KDB module (which is still technically "native") is required to
configure co
Greg Hudson writes:
> There's krb5-sync, which works with MIT krb5 or Heimdal. It's designed
> to sync to Active Directory, so while it does sync passwords via LDAP,
> I'm not sure it will work with just any LDAP server as the target.
> https://www.eyrie.org/~eagle/software/krb5-sync/
It doesn
