[OpenAFS] Separate KDC

[Sam Hartman]

>>>>> "Michael" == Michael Robokoff <Michael.Robokoff@netaspx.com> writes:

    Michael> I have heard there is some issue regarding win2k machines
    Michael> and openAFS when the KDC is on a separate machine. Does
    Michael> anyone have any information on this? Is it still a
    Michael> problem? Did I describe the problem correctly?

Many sites wish to use the native Kerberos in win2k and then set up
AFS to work with that.  So, they don't use a kasever, but instead use
MIT krb524d in keytab mode.  The advantage is that you get your
Windows passwords granting access to AFS.