[OpenAFS] AFS without Kerberos headache

Harald Barth haba@kth.se
Sun, 21 Dec 2008 18:36:45 +0100 (CET)

> In fact what I need ideally is a file system like NFS just with the
> added features needed to use it in a Metropolitan Network setup, i.e.
> local caching of files.

As an added feature, I hope you want to have control who wrote a file.

> AFS seems to do this in a good way, but Kerberos is a constant annoyance
> to it. I do have machines that generate simulation data and have to work
> for weeks. If I like to do this with the current OpenAFS setup, I'll
> have to log in once a day and refresh the damn Kerberos token :-(.

You can have longer timed tickets and tokens. You can save tickets in
keytabs. If your hosts have keytabs, you can use them to generate
tickets from.

You can have system:anyuser write if you want to mimic NFS ;)