[prev in list] [next in list] [prev in thread] [next in thread]
List: kerberos
Subject: Re: Kerberos and LDAP password sync question
From: Russ Allbery <eagle () eyrie ! org>
Date: 2017-08-02 19:28:15
Message-ID: 87mv7hydkg.fsf () hope ! eyrie ! org
[Download RAW message or body]
Greg Hudson <ghudson@mit.edu> writes:
> There's krb5-sync, which works with MIT krb5 or Heimdal. It's designed
> to sync to Active Directory, so while it does sync passwords via LDAP,
> I'm not sure it will work with just any LDAP server as the target.
> https://www.eyrie.org/~eagle/software/krb5-sync/
It doesn't use LDAP to store the password, only the account status. It
uses the Kerberos password change protocol to store the password. So that
won't be immediately helpful for a generic LDAP server.
--
Russ Allbery (eagle@eyrie.org) <http://www.eyrie.org/~eagle/>
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic