http://support.microsoft.com/?kbid=555092
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q324144
I didn't create the keytab file discussed in the second article. I
think it's using 'KrbVerifyKDC off' that makes that unnecessary.
Arthur Penn wrote:
>No kidding--it took me a good while to get mod_auth_sspi configured to
>work, and Kerberos would be greatly preferable. Can (has) anyone
>document(ed) the procedures for getting Kerberos working?
>
>Arthur
>
>-----Original Message-----
>From: Steve Dwire [mailto:sdwire@parkcitysolutions.com]
>Sent: Thursday, August 26, 2004 5:43 PM
>To: Jason Taylor
>Cc: users@subversion.tigris.org
>Subject: RE: "Windows Authentication" Was: "Credentials Caching -
>Security Guy Not Happy" from users list
>
>Oh, REALLY??? I'm gonna have to try this! We use TortoiseSVN, too.
>Everything I've always seen for authenticating against a Windows Domain
>always referred to mod_auth_sspi. If we can get mod_auth_kerb working
>instead, it looks like a FAQ update will be in order... (Or if someone
>else wants to do a FAQ update, I wouldn't mind that, either <grin>)
>
>Steve Dwire
>
>
>-----Original Message-----
>From: Jason Taylor [mailto:jtaylor@bastyr.edu]
>Sent: Thursday, August 26, 2004 4:32 PM
>To: Steve Dwire
>Cc: users@subversion.tigris.org
>Subject: Re: "Windows Authentication" Was: "Credentials Caching -
>Security Guy Not Happy" from users list
>
>I use TortoiseSVN and it just works.
>
>Steve Dwire wrote:
>
>
>
>>I would imagine that SVN does not currently handle the client-side half
>>of the Kerberos negotiation, however. Would that be correct?
>>
>>Is that all ("all" ha!) that would be necessary to provide seamless
>>authentication, then? the existing mod_auth_kerb on Apache (properly
>>configured) and a smarter SVN client?
>>
>>Steve Dwire
>>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Fri Aug 27 18:58:47 2004