[OpenAFS] pts createuser -name hostname.domain ?

Jeffrey Altman jaltman@secure-endpoints.com
Tue, 09 Nov 2010 08:42:37 -0500


This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--------------enig2538F6C95901B19735DA2195
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

On 11/9/2010 4:32 AM, Assarsson, Emil wrote:
> Hi,
>=20
> I know there is a way to add client machines by their ip address. But i=
s it possible to add them by hostname instead using their Kerberos princi=
palName?

Not at the moment.  There are two things that need to be done.

First, a new class of users in the PTS database would have to be created
that distinguishes a machine from a user entity.

Second, the token that is provided to the file server from the cache
manager will need to be a combined token that represents both the
machine and either anonymous or a particular user.

The ability to support these combined tokens is being added as part of
the rxgk security class that Your File System is building.  Simon
Wilkinson is the lead developer for that project.

Jeffrey Altman


--------------enig2538F6C95901B19735DA2195
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)

iQEcBAEBAgAGBQJM2U/NAAoJENxm1CNJffh4MH4IAKDp5odwuR7Cjue/ZwTEURMo
LNFVH3QngEfA4/GBJ/aPToxn4puus8zSQQteYMXmHO5zy6Cn+G0kncWZtP+yg3Dv
R5EHv+xDKviAZXX1Sx7O5sROd1OvdH6E96U8SHlV/+r/fj1GtR+BhIT1yj8WwPQQ
TaHjyz0PAZLskW+8DenQ7iyi0FO/ZXaYFeavFjYn3AcWL/Ueq8h/QV0ihL9WB/ve
pKUDorbUFf4qag3fZ6NH122nLQynRLVKhcXH2VDRZeNl1ZC64IhgI4AfHT0Z0Y16
YEUIWb8XdGYIdncrh48KjdQtIGSvF8FeEaDF2w9NYnxUyUpSnp0pvCOJDcG12/Q=
=itbE
-----END PGP SIGNATURE-----

--------------enig2538F6C95901B19735DA2195--