I think that George is thinking about implementing krb5 (Kerberos)
mechanism for Xen host authorization directly into the XCP platform,
i.e. the kerberos credentials (obtained by kinit) could be useful when
the company is using one kerberos server infrastructure which means the
one-password infrastructure and they can be using it for various
authorizations when the ticket is already obtained and it could be
useful for e.g. accessing websites, accessing some intranet tools as
well as this is the request to implement it into the Xen infrastructure
so the ticket could be used for everything in their company/network
until the ticket expires.
Michal
On 06/23/2010 03:25 PM, David Markey wrote:> Do you mean via ssh, or via OpenXenCenter?
>
> On 23 June 2010 12:57, George Shuklin <nge@narod.ru
> <mailto:nge@narod.ru>> wrote:
>
> Good day.
>
> I was thinking, is it possible to add kerberos support to XCP? By
> Kerberos mechanism, all hosts can trust each other without
> passwords (for example, by using xcp/host@realm principals), and
> nfs4 identification will be possible...
> --
> wBR,George.
>
> _______________________________________________
> Xen-devel mailing list
> Xen-devel@lists.xensource.com
<mailto:Xen-devel@lists.xensource.com>
> http://lists.xensource.com/xen-devel
>
>
>
> _______________________________________________
> Xen-devel mailing list
> Xen-devel@lists.xensource.com
> http://lists.xensource.com/xen-devel
>
--
Michal Novotny<minovotn@redhat.com>, RHCE
Virtualization Team (xen userspace), Red Hat
_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xensource.com
http://lists.xensource.com/xen-devel