shibboleth-dev - RE: Shibboleth and Kerberos Tickets
Subject: Shibboleth Developers
List archive
- From: "Scott Cantor" <>
- To: <>
- Subject: RE: Shibboleth and Kerberos Tickets
- Date: Fri, 13 Jul 2007 14:01:15 -0400
> I'd like to add a feature. In our environment, some backend servers
> (such as the Sun Directory Server) do not support GSSAPI and cannot do
> anything useful with a Kerberos ticket.
I don't think this discussion is about services that aren't Kerberized, that
seems kind of beside the point. If they don't do Kerberos, what would they
support that isn't password or X.509?
> So for Service Providers that
> use these backend servers, we pass them a proxy token that's created
> from the Kerberos ticket. The proxy token is the part of the ticket
> that's encrypted in the backend server's key and contains the meaningful
> ticket data with the lifetime information, ip addresses, flags, etc. So
> we would like the IdP to also allow passing this part of the ticket that
> we use as a proxy token.
What do you do with it?
-- Scott
- RE: Shibboleth and Kerberos Tickets, (continued)
- RE: Shibboleth and Kerberos Tickets, RL 'Bob' Morgan, 07/12/2007
- RE: Shibboleth and Kerberos Tickets, Scott Cantor, 07/12/2007
- RE: Shibboleth and Kerberos Tickets, RL 'Bob' Morgan, 07/12/2007
- RE: Source attributes from LDAP, Lisa Tan, 07/12/2007
- Re: Source attributes from LDAP, Nate Klingenstein, 07/12/2007
- RE: Source attributes from LDAP, Lisa Tan, 07/12/2007
- Re: Source attributes from LDAP, Nate Klingenstein, 07/12/2007
- Re: Source attributes from LDAP, Nate Klingenstein, 07/12/2007
- RE: Source attributes from LDAP, Lisa Tan, 07/12/2007
- RE: Shibboleth and Kerberos Tickets, RL 'Bob' Morgan, 07/12/2007
- RE: Shibboleth and Kerberos Tickets, Scott Cantor, 07/12/2007
- RE: Shibboleth and Kerberos Tickets, RL 'Bob' Morgan, 07/12/2007
- Message not available
- Re: Shibboleth and Kerberos Tickets, Chad La Joie, 07/12/2007
- Re: Shibboleth and Kerberos Tickets, Chad La Joie, 07/13/2007
- RE: Shibboleth and Kerberos Tickets, Scott Cantor, 07/13/2007
- Re: Shibboleth and Kerberos Tickets, Shilen Patel, 07/13/2007
- RE: Shibboleth and Kerberos Tickets, Scott Cantor, 07/13/2007
- Re: Shibboleth and Kerberos Tickets, Shilen Patel, 07/16/2007
- RE: Shibboleth and Kerberos Tickets, Scott Cantor, 07/16/2007
- Re: Shibboleth and Kerberos Tickets, Shilen Patel, 07/16/2007
- RE: Shibboleth and Kerberos Tickets, Scott Cantor, 07/16/2007
- Re: Shibboleth and Kerberos Tickets, Shilen Patel, 07/16/2007
- RE: Shibboleth and Kerberos Tickets, Scott Cantor, 07/13/2007
- Re: Shibboleth and Kerberos Tickets, Shilen Patel, 07/13/2007
- Re: Shibboleth and Kerberos Tickets, RL 'Bob' Morgan, 07/19/2007
Archive powered by MHonArc 2.6.16.