directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Xu Yaning (JIRA)" <>
Subject [jira] [Issue Comment Deleted] (DIRKRB-20) Encrypt user keys with server master key
Date Wed, 18 Nov 2015 04:58:11 GMT


Xu Yaning updated DIRKRB-20:
    Comment: was deleted

(was: It seems that master is not the krbtgt/Domain@Domain key.)

> Encrypt user keys with server master key
> ----------------------------------------
>                 Key: DIRKRB-20
>                 URL:
>             Project: Directory Kerberos
>          Issue Type: New Feature
>            Reporter: Enrique Rodriguez
>            Assignee: Enrique Rodriguez
> User keys are currently stored in the DIT as plaintext keys, for example, in the krb5key.
 These keys should be encrypted with the server master key.  The server master key should
be stored in the Eve system partition.

This message was sent by Atlassian JIRA

View raw message