From: Michal Novotny <minovotn@redhat.com>
To: admin@dmarkey.com
Cc: xen-devel@lists.xensource.com, George Shuklin <nge@narod.ru>
Subject: Re: kerberos support for XCP
Date: Wed, 23 Jun 2010 15:33:23 +0200 [thread overview]
Message-ID: <4C220D23.3020106@redhat.com> (raw)
In-Reply-To: <AANLkTileExP76rv5yA5cmJ-q555PN8XHed73eo1MQ-vr@mail.gmail.com>
I think that George is thinking about implementing krb5 (Kerberos)
mechanism for Xen host authorization directly into the XCP platform,
i.e. the kerberos credentials (obtained by kinit) could be useful when
the company is using one kerberos server infrastructure which means the
one-password infrastructure and they can be using it for various
authorizations when the ticket is already obtained and it could be
useful for e.g. accessing websites, accessing some intranet tools as
well as this is the request to implement it into the Xen infrastructure
so the ticket could be used for everything in their company/network
until the ticket expires.
Michal
On 06/23/2010 03:25 PM, David Markey wrote:
> Do you mean via ssh, or via OpenXenCenter?
>
> On 23 June 2010 12:57, George Shuklin <nge@narod.ru
> <mailto:nge@narod.ru>> wrote:
>
> Good day.
>
> I was thinking, is it possible to add kerberos support to XCP? By
> Kerberos mechanism, all hosts can trust each other without
> passwords (for example, by using xcp/host@realm principals), and
> nfs4 identification will be possible...
> --
> wBR,George.
>
> _______________________________________________
> Xen-devel mailing list
> Xen-devel@lists.xensource.com <mailto:Xen-devel@lists.xensource.com>
> http://lists.xensource.com/xen-devel
>
>
>
> _______________________________________________
> Xen-devel mailing list
> Xen-devel@lists.xensource.com
> http://lists.xensource.com/xen-devel
>
--
Michal Novotny<minovotn@redhat.com>, RHCE
Virtualization Team (xen userspace), Red Hat
prev parent reply other threads:[~2010-06-23 13:33 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2010-06-23 11:57 kerberos support for XCP George Shuklin
2010-06-23 13:25 ` David Markey
2010-06-23 13:33 ` Michal Novotny [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4C220D23.3020106@redhat.com \
--to=minovotn@redhat.com \
--cc=admin@dmarkey.com \
--cc=nge@narod.ru \
--cc=xen-devel@lists.xensource.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).