måndag 15 september 2008

GSS_C_DELEG_POLICY_FLAG and cross realm

I've been working on the draft for GSS_C_DELEG_POLICY_FLAG lately. One thing I have added is th reason why we need this document. This was requested by reviewers.

Its for legacy deployments that can't update Kerberos today and can't/don't want to change behavior.

Getting the flag defined and the behavior clarified is only the first step of this process. The second is to make sure it works in the cross realm case too. The proposal I have is to make it an MUST that all intermediate cross realm tgt tickets also have ok-as-delegate flag set. It seems Microsoft does it that was and I've asked them if I've read their spec is correctly.

1 kommentar:

  1. Heimdal is a figure from Norse mythology, often depicted as a god or guardian. He is associated with protection, vigilance, and keeping watch over the gods and humanity. Heimdal is said to possess keen senses and sound the alarm if danger approaches, making him a crucial guardian in Norse mythology.
    trucking accident lawyer
    attorney for contract disputes
    class 1 misdemeanor virginia reckless driving