7311 – Only Microsoft's built in kerberos implementation works on Windows

Bug 7311 - Only Microsoft's built in kerberos implementation works on Windows

Summary: Only Microsoft's built in kerberos implementation works on Windows

Status:	NEW

Alias:	None

Product:	ThinLinc
Classification:	Unclassified
Component:	Client (show other bugs)
Version:	trunk
Hardware:	PC Unknown

Importance:	P2 Normal
Target Milestone:	LowPrio
Assignee:	Bugzilla mail exporter

URL:
Keywords:

Depends on:
Blocks:

Reported:	2019-02-14 15:14 CET by Samuel Mannehed
Modified:	2019-02-19 12:39 CET (History)
CC List:	0 users

See Also:
Acceptance Criteria:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Samuel Mannehed

2019-02-14 15:14:05 CET

You can't authenticate with an alternative kerberos implementation in the ThinLinc client on Windows. Only Microsoft's built in implementation works.

See bug 5816 for Heimdal Kerberos authentication.

Comment 2 Pierre Ossman

2019-02-19 12:39:31 CET

The use case is that you in some cases want to use Kerberos authentication against a ThinLinc system that has absolutely nothing to do with the Active Directory domain that your local Windows machine is a part of.

Under Linux you would just do "kinit user@OTHER.REALM", but Windows lacks any such tools. So people install alternative Kerberos implementations for this.

For reference there also floats around a bunch of different patches to add support for this for Putty, so there is some precedence for supporting this model.

Note You need to log in before you can comment on or make changes to this bug.