Stack Overflow
Stack Overflow

Questions tagged [kdc]

Key Distribution Center (KDC) is part of a cryptosystem intended to reduce the risks inherent in exchanging keys. KDCs often operate in systems within which some users may have permission to use certain services at some times and not at others and is a fundamental part of the Kerberos authentication protocol.

Key Distribution Center (KDC) is part of a cryptosystem intended to reduce the risks inherent in exchanging keys. KDCs often operate in systems within which some users may have permission to use certain services at some times and not at others and is a fundamental part of the Kerberos authentication protocol.

36 questions
0
votes
0 answers

Accessing Kerberos NFS filer from kubernetes pod

I'm trying to access NFS filer protected with Kerberos from my kubernetes pod using keytab file. To achieve this here is what I have done so far. Created Dockerfile with Kerberos tools installed in it. Dockerfile From centos:7 RUN yum -y install…
chandrashekar
  • 35
  • 1
  • 1
  • 7
0
votes
0 answers

How do you verify a SPNEGO token once it's generated in integration testing

I have used the library SimpleKdcServer and created an intergation test which at the end produces a SPNEGO token. Is there a way to verify it, like can I somehow reverse the process and make sure that the genreated token is the correct value or…
Chris Dworczyk
  • 3
  • 3
0
votes
1 answer

Volume/Day on a Kafka Topic

Our Kafka is KDC Integrated in linux environment and RBAC is managed under Windows Active Directory Server. Using KAfka Admin API is it possible to get this data?
ABC DEF
  • 189
  • 2
  • 14
0
votes
1 answer

Kerberos - How are timeout and number of retries configuration parameters set?

My application authenticates users via Active Directory Kerberos. I'm using kerb4j, https://github.com/bedrin/kerb4j, which ultimately uses sun.security.krb5 code. When my application attempts authentication, I see the following in stdout (after…
James
  • 2,876
  • 18
  • 72
  • 116
0
votes
0 answers

kadmind fails to start

I am in the wake of setting up ad MIT Kerberos5 kdc on a Raspberry Pi 2. As being a noob in such matters, I spent quite a fair number of hours on The Net, reading various documents, blogs, posts, forum entries, which helped really a lot. Presently I…
user4338
  • 173
  • 1
  • 12
0
votes
2 answers

KDC validation from TGS-REP

I have a question on validating the KDC from TGS-REP. I have a legacy test tool written in c++ that validates the user's AD credentials. This test-tool invokes krb5 library methods for performing the authentication and runs on client (linux…
kee
  • 46
  • 2
  • 10
0
votes
1 answer

IWA doesn't work with WSO2 Identity-Server(wso2is-km-5.9.0)

I have setup IWA for my service provider by following these…
shubh1023
  • 23
  • 4
0
votes
1 answer

KDC sever not found in kerberos database

I have kerberos installed with a kdc server and a client. They both work and I can generate ticket without any problem via kinit. However, I cannot do that via the MIT Kerberos API. I have the following code, which should generate a ticket with the…
cs crypt
  • 1
  • 2
0
votes
1 answer

Cloudera node /etc/krb5.conf replaced at every reboot

I have a question, why are my cloudera nodes replacing the file /etc/krb5.conf ata every reboot ?? Im trying to make modifications, and when someone issues a reboot the file is again replaced by the old config file
Flechoide
  • 75
  • 3
  • 10
0
votes
1 answer

Need to install MIT KDC in All hadoop Nodes in the cluster For Kerberos Authentication?

I have a 5 nodes Hadoop cluster(Hortonworks). I am doing kerborised authentication using MIT KDC and Ambari. In my every node my hostname like xxx.trinityiot.cloud. here my doubt is Either I need to install MIT KDC in every node or in Ambari server…
satish pujara
  • 1
  • 3
0
votes
1 answer

Ambari Failed to create principals while installing Kerberos

I have installed MITKDC. I am enabling Kerberos using Existing MIT KDC From Ambari. While creating principals I am getting below error. Failed to create principal, trinitylocal-071819@HUB.LOCAL - Failed to create a service principal for…
pujara
  • 21
  • 1
  • 8
0
votes
0 answers

Two Hadoop clusters with Kerberos authentication

what is the best approach to connect to separate Hadoop clusters with Kerberos authentication. From the client perspective - We have two keytab files, Kerberos configuration is fine and we can connect to separate clusters using related keytabs. The…
Konstantin
  • 1
0
votes
0 answers

Use only one Domain Controller for Kerberos Authentification

We need to test the Kerberos authentification with only one Domain controllers instead of two. In my Kerberos Configuration I have the following lines: [libdefaults] default_realm = ABC.ABC.DE [realms] ABC.ABC.DE = { …
André Deseive
  • 23
  • 2
0
votes
1 answer

Configure encryption types allowed for Kerberos disabled

I used the Configure encryption types allowed for Kerberos in a KDC on Windows Server 2012 R2 for few times but now it's disabled. I don't know why or how to enable it. Help will be appreciated :) The Disabled Configuration Panel
Oran Majar
  • 1
  • 1
0
votes
1 answer

security hole in GSSContext acceptSecContext method? (JAVA)

When the service ticket generated by the client is sent to the server, GSSContext acceptSecContext method is to decode the such ticket that was encoded by the KDC. when this method is called with the service ticket as its parameter, is the ticket…
Alison Aftra
  • 63
  • 1
  • 9
1
2
3