[OpenAFS] MSKLOG - Klog for Windows with no krb524d

[Douglas E. Engert]

I have been working on a klog program for Windows that does not
need any addition Kerberos libraries, and does not need krb524d.
Instead it uses the Kerberos support found in SSPI, and LAS along 
with the fact that OpenAFS servers can now accept Kerberos V5 tickets
in the AFS token. 

In particular this should make OpenAFS much easier to install on 
Windows only shops.   
 
I am looking for comments on its usefulness, and for additional
testing. It is currently a command line program but the next step would
be to submit it to OpenAFS as a mod to be call directly from
afscreds.exe. 

Although it does not need any Kerberos libs, it does need
the OpenAFS libs which are not in the binary distribution so 
you will need to build OpenAFS from source. 

It can be found at: 
ftp://achilles.ctd.anl.gov/pub/DEE/README.MSKLOG
ftp://achilles.ctd.anl.gov/pub/DEE/msklog-0.0.tar 


>From the README:

AFS has evolved over the years, and recent capabilities have been
added to OpenAFS to allow it to use Kerberos V5 tickets in the AFS token.
The MSKLOG program takes advantage of this, and is designed to use
as much of the Microsoft built in Kerberos code as possible. When 
run on a machine as part of a domain the User's login credentials can
be used to obtain the AFS token. 
 
Unlike aklog or gssklog, no additional Kerberos libraries are needed
on the client, and no additional daemons like krb524d or gssklogd are
needed.  

The program relies only on the Microsoft DLLs and OpenAFS libraries.
No changes are needed to the AFS servers. So the program can easily be used
in a Microsoft only environment, as well as a mixed environment.

-- 

 Douglas E. Engert  <DEEngert@anl.gov>
 Argonne National Laboratory
 9700 South Cass Avenue
 Argonne, Illinois  60439 
 (630) 252-5444