[linux-cifs-client] CIFS and Kerberos
Jeff Layton
jlayton at redhat.com
Wed Apr 23 13:26:40 GMT 2008
On Wed, 23 Apr 2008 16:19:05 +0800
"Coe, Colin C. (Unix Engineer)" <Colin.Coe at woodside.com.au> wrote:
>
> Hi all
>
> First up, apologies for the previous (brain dead) 'subscribe' email.
>
> I'm doing some testing with RHEL4 (2.6.9-67.0.7) with has cifs kernel
> module v1.48a.
>
> I'm trying to setup some automount maps that so that I can seamlessly
> mount some CIFS shares re-using the users credentials. The user is
> authenticated/authorised via AD through PAM.
>
> Effectively I'm trying to get this mount command 'mount -t cifs -o
> sec=krb5,domain=ours //filer/share /mnt' to work without being passed a
> username or password.
>
> The reading I've done
> (http://css.its.psu.edu/PASSBeta/UNIXLinuxCIFS.html ) suggests that this
> should be possible but currently isn't due to incomplete
> "Kerberos/SPNEGO session setup support". I've checked the latest cifs
> 1.50c tarball and it says the same thing. Can anyone give me an
> indication when this will be done?
>
Kerberos/SPNEGO support hit mainline kernels in 2.6.24.
My plan is to roll CIFS Kerberos/SPNEGO into RHEL 5.3. There is no plan
to add that feature for RHEL4.
--
Jeff Layton <jlayton at redhat.com>
More information about the linux-cifs-client
mailing list