[nycbug-talk] FreeIPA
Pete Wright
pete at nomadlogic.org
Thu May 19 16:39:53 EDT 2011
On Thu, May 19, 2011 at 02:57:31PM -0400, Edward Capriolo wrote:
> Pete,
>
> I was under the impression that the Kerberos +SSH setup you describe above
> requires a kerberos capable SSH Client. Is that correct? If so do all SSH
> tools like putty support this? That was the problem I was getting at, that
> in the environment I was in I was not able to control the SSH client, or the
> web browser in use, so even though technically SSH and HTTP support this.
> You can not count on a tool like putty, or someone favourite FTP client to
> have Kerberos.
>
i know on FreeBSD (and iirc OpenBSD), as well as RHEL/CentOS linux krb
auth is enabled by default for openssh. i can not speak for non-openssh
implementations though.
-pete
--
Pete Wright
pete at nomadlogic.org
More information about the talk
mailing list