LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   Forwarding tickets via Kerberized SSH (https://www.linuxquestions.org/questions/linux-security-4/forwarding-tickets-via-kerberized-ssh-535474/)

nilecirb 03-07-2007 03:11 PM
Forwarding tickets via Kerberized SSH
 
I have not been able to successfully find any good documentation on setting up Kerberos to forward tickets in my environment. The KDC works perfectly, but I am having trouble setting up the following situation: Client A and Server B both have Kerberized SSH. I want to be able to call ssh from A to connect to B with my ticket. B then forwards/checks the ticket against the KDC server. If the credentials are approved, allow the SSH connection.

I understand the basic concept of Kerberized SSH, but I cannot find any documentation as to how to set up the machines, particularly Server B.

nmh+linuxquestions.o 03-11-2007 01:48 AM
Do you have GSSAPI turned on?

Some of the options look like:
Code:
# Kerberos options
#KerberosAuthentication no
#KerberosOrLocalPasswd yes

# GSSAPI options
#GSSAPIAuthentication no
#GSSAPICleanupCredentials yes
did you try searching for ssh+gssapi on google?

some spidering off those hits will net:
Could you post some details about the two systems in question - OS, SSH/SSHD, kerberos details.


All times are GMT -5. The time now is 01:14 PM.