Corresponding to the local (default) realm and local principal users in the local system are the concepts of foreign realm and foreign principal user. The foreign realm is mapped into a web address, which the Kerberos server will contact for tickets. Foreign realms must be defined to the Kerberos configuration file. The corresponding SDT definition defines a trust relationship between the local web‑address and the foreign web‑address. The foreign principal definition defines a mapping from a user and a web‑address into a local ACID. Foreign principals are not defined in the Kerberos configuration file.
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|