Highest Voted 'gssapi' Questions - Server Fault Stack Exchange

0

votes

1 answer

How to setup SASL Proxy Authorization with an OpenLDAP server on Debian

For Kerberos Authentication together with SASL/GSSAPI Authorization on client devices I need Proxy Authorization on an OpenLDAP server running on Raspberry Pi with Debian/Raspbian Buster. I tried to follow the description in the OpenLDAP Software…

asked Nov 28 '19 at 01:36

Ingo

416
5
13

0

votes

1 answer

nginx - prevent caching authorization info

I am using nginx as reverse proxy for my asp.net core web application. I am using spnego module for nginx for supporting of windows integrated authentication. It is works, but if user enters incorrect credentials, credentials is not prompted again?…

nginx kerberos windows-authentication gssapi

asked Oct 03 '19 at 12:30

DarkGenius

101
3

0

votes

1 answer

Bind LDAP simple authentication

I have a customer with LDAP that I can only log in with GSS-API enabled. He doesn't know how to enable simple authentication. How can I enable this in MS ActiveDirectory?

active-directory ldap gssapi

asked May 07 '17 at 13:45

Nati

101
1
4

0

votes

1 answer

unable to authenticate with kerberos to ipa client from windows 10 machine

I have a domain joined windows 10 computer trying to authenticate via kerberos to an ipa (4.4.0) client (centos 7.2), I can authenticate with user/pass and then kinit but I cannot seem to authenticate with the kerberos tickets on my…

ssh kerberos freeipa gssapi

asked Aug 15 '16 at 20:32

Jacob Evans

7,886
3
29
57

0

votes

0 answers

Why is my sshd looking for a wrong kvno in keytab?

My FreeBSD box is using Heimdal Kerberos-implementation. It is registered with the corporate AD, its msDS-KeyVersionNumber-attribute is set to 2, and its keytab has the following entries: FILE:/etc/krb5.keytab: Vno Type …

active-directory ssh kerberos gssapi heimdal

asked Jun 24 '16 at 05:52

Mikhail T.

2,338
1
24
55

0

votes

2 answers

gssapi/kerberos/active directory/ubuntu - Wrong principal in request

I'm trying to setup a Clientserver with a Webservice to which Users of an Active Directory should be able to login with SSO. I'm using SPNEGO with Kerberos on a Ubuntu 14.04 Server and nginx proxy to Naviserver for the Webservice to do that and get…

kerberos single-sign-on gssapi spnego

asked Feb 17 '16 at 08:28

Sky

11
3

0

votes

0 answers

kerberos authentication to linux from windows

We have mostly unix/linux server in our data center. We access them from our workstations running windows using putty. All the workstations are part of an AD domain but the servers are not. Kerberos is configured in the workstations and while…

active-directory ssh kerberos putty gssapi

asked Jan 20 '16 at 09:42

varun

361
2
12

0

votes

1 answer

psql: duplicate GSS authentication request

What does it mean by saying 'duplicate' ? How to troubleshoot this? guest@www:~$ klist Ticket cache: FILE:/tmp/krb5cc_1000 Default principal: user/admin@SOHONET Valid starting Expires Service principal 12/11/2015 07:37:08 …

postgresql kerberos gssapi mitkerberos postgresql-9.1

asked Dec 11 '15 at 09:14

user319773

1
2

0

votes

1 answer

kdm and ssh detecting different fully qualified domain name when using kerberos authentication

I'm attempting to setup Kerberos login support (Windows AD domain providing the kerberos) for Kubuntu 12.04 Linux workstations at the company I'm at. It's almost completely working but I can't get kerberos working both for machine logins (via kdm)…

linux active-directory ssh kerberos gssapi

asked Jun 18 '15 at 05:53

Jason Alavaliant

23
5

0

votes

1 answer

Does "Kerberised" NFSv4 securely protect against a malicious client spoofing the user

I have read conflicting statements about whether shares exported via NFSv4 with sec=krb5 are cryptographically protected against a malicious client mounting the share and then spoofing the user to gain access to unauthorised files. For example, here…

security kerberos file-permissions nfs4 gssapi

asked Jun 15 '15 at 13:45

Terry Burton

160
1
9

0

votes

1 answer

Mail client with support for gssapi

I have configured Postfix and Cyrus Imap to enable SSO using Kerberos and GSSAPI. I use Thunderbird as a mail client which supports GSSAPI but I wanted to try some other client also. I tried installing Opera Mail but this has no support. That's…

email postfix kerberos gssapi

asked Dec 30 '13 at 17:30

Maria José

131
3
12

0

votes

0 answers

Use gssapi with Microsoft office outlook.

Currently in windows computer I have installed Kerberos for Windows. This allowed me to use sso with Thunderbird against a Cyrus IMAP. Thunderbird has the option of using GSSAPI. Is possible to configure Microsoft office outlook to access via…

windows email-server outlook gssapi

asked Nov 04 '13 at 13:36

Maria José

131
3
12

0

votes

1 answer

Strange Change in ssh behavior + LDAP

We have a cluster with a front node that admits normal users and LDAP users. Two days ago the ssh show a strange behavior: The LDAP users can't login in the front node using password but, The LDAP users can login if they setup ssh-key in…

ssh ldap pam gssapi

asked Aug 21 '13 at 10:29

Zhen

2,159
4
19
31

0

votes

1 answer

Cyrus-IMAP, GSSAPI and auxprop

I'm setting up a mail system using Postfix (OpenLDAP backend) and Cyrus-IMAP on Debian. Goal: I'd love to go ahead with GSSAPI authentication. I've tested the whole setup on virtual machines on my laptop, and everything works. Problem: I need mail…

cyrus gssapi

asked Feb 02 '12 at 20:06

badbishop

928
4
12
21

0

votes

1 answer

Error on trying to ssh to a prgmr box when using PuTTY like utility KiTTY

I recently got a box on prgmr. Excited, I tried to login using my username password in KiTTY (which is basically an improved PuTTY) and got the following error, shown in the screenshot. Now, I can connect fine when using a Linux terminal. The…

ssh authentication kerberos putty gssapi

asked Sep 15 '11 at 12:24

detj

103
3

Questions tagged [gssapi]