31 lines
785 B
Plaintext
31 lines
785 B
Plaintext
|
/***********************************************************************
|
||
|
|
*
|
||
|
|
* README for krb5mech
|
||
|
|
*
|
||
|
|
***********************************************************************/
|
||
|
|
|
||
|
|
INTRODUCTION
|
||
|
|
|
||
|
|
krb5mech is a client authentication mechanism for the support of Kerberos 5
|
||
|
|
authentication. The mechanism leverages the services of the native Kerberos 5
|
||
|
|
client to obtain Kerberos Tokens that can be used for authenticating an entity
|
||
|
|
to a Kerberos service.
|
||
|
|
|
||
|
|
|
||
|
|
SECURITY CONSIDERATIONS
|
||
|
|
|
||
|
|
The tokens that krb5mech generates are only utilized to authenticate the client
|
||
|
|
entity to the Kerberos service, because of this, auth_token relies on SSL for
|
||
|
|
server authentication. auth_token does not leverage the capabilities of GSSAPI
|
||
|
|
for data privacy and data integrity purposes.
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|