613317 – Kerberos client now requires new option for weak crypto

Bug 613317 - Kerberos client now requires new option for weak crypto

Summary: Kerberos client now requires new option for weak crypto

Status:	CLOSED NEXTRELEASE
Alias:	None
Product:	Red Hat Enterprise Linux 6
Classification:	Red Hat
Component:	doc-Migration_Guide
Sub Component:
Version:	6.0
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	rc
Target Release:	---
Assignee:	Laura Bailey
QA Contact:	ecs-bugs
Docs Contact:
URL:
Whiteboard:
Keywords:	Documentation
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2010-07-10 18:38 UTC by Miroslav Vadkerti
Modified:	2013-02-05 23:54 UTC (History)
CC List:	0 users
Fixed In Version:
Doc Type:
Doc Text:	(edit)
Clone Of:
Environment:	(edit)
Last Closed:	2010-07-11 23:11:01 UTC

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Miroslav Vadkerti 2010-07-10 18:38:50 UTC

Description of problem:
Kerberos client now requires allow_weak_crypto option in libdefaults section for connections that authenticate with server using weak cryptography. If this option is not present, the authentication fails. This should be documented as it can cause confusion when migrating clients to RHEL6.

[libdefaults]
allow_weak_crypto = yes

Comment 1 Scott Radvan 2010-07-11 23:11:01 UTC

Thanks, have added this to the Migration Guide. It will appear on the next publish.

Note You need to log in before you can comment on or make changes to this bug.