Re: [lvs-users] ldirectord and kerberos

To: Graeme Fowler <graeme@xxxxxxxxxxx>
Subject: Re: [lvs-users] ldirectord and kerberos
Cc: " users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
From: Simon Horman <horms@xxxxxxxxxxxx>
Date: Fri, 25 Feb 2011 15:52:44 +0900
On Thu, Feb 24, 2011 at 08:31:42PM +0000, Graeme Fowler wrote:
> On Thu, 2011-02-24 at 19:48 +0100, L.S. Keijser wrote:
> > actually, AFAIK kerberos is not 'LVS-compatible'. See:
> That's missing the point slightly, Leon - what I believe Andrew is after
> is the ability for ldirectord to use a previously obtained & cached
> Kerberos TGT to obtain a Kerberos service ticket from a KDC and use that
> in the healthcheck process against the realservers.
> Phew, I typed all the above without taking a breath ;)
> With ldirectord being written in Perl, and there being a pretty well
> documented module Authen::Krb5 available - it's possible. But right now
> ldirectord doesn't do that.

I'll add that patches to ldirectord are always welcome.

Please read the documentation before posting - it's available at: mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
or go to

<Prev in Thread] Current Thread [Next in Thread>