Details

    • Type: New Feature New Feature
    • Status: Open
    • Priority: Major Major
    • Resolution: Unresolved
    • Affects Version/s: 2.0.0-RC1
    • Fix Version/s: 2.0.0-RC1
    • Component/s: None
    • Labels:
      None

      Description

      User keys are currently stored in the DIT as plaintext keys, for example, in the krb5key. These keys should be encrypted with the server master key. The server master key should be stored in the Eve system partition.

        Activity

        Error rendering 'com.atlassian.jirafisheyeplugin:fisheye-issuepanel'. Please contact your JIRA administrators.

        Emmanuel Lecharny made changes -
        Fix Version/s 2.0.0-RC1 [ 12315256 ]
        Emmanuel Lecharny made changes -
        Affects Version/s 2.0.0-RC1 [ 12315256 ]
        Christine Koppelt made changes -
        Project Directory ApacheDS [ 12310260 ] Directory Kerberos [ 12310910 ]
        Key DIRSERVER-152 DIRKRB-20
        Component/s kerberos [ 12310716 ]
        Fix Version/s 2.0.0 [ 12312396 ]
        Emmanuel Lecharny made changes -
        Fix Version/s 2.0.0 [ 12312396 ]
        Hide
        Emmanuel Lecharny added a comment -

        Let's try to fix this for 2.0

        Show
        Emmanuel Lecharny added a comment - Let's try to fix this for 2.0
        Hide
        Enrique Rodriguez added a comment -

        KDC master keys are typically stored in their own file and protected by filesystem permissions. The KDC master key stash file should provide the option of password protection.

        Show
        Enrique Rodriguez added a comment - KDC master keys are typically stored in their own file and protected by filesystem permissions. The KDC master key stash file should provide the option of password protection.
        Alex Karasulu made changes -
        Component/s kerberos [ 12310716 ]
        Key DIRKERBEROS-10 DIRSERVER-152
        Component/s Kerberos Protocol Provider [ 11495 ]
        Fix Version/s 0.4.0 [ 11007 ]
        Type Improvement [ 4 ] New Feature [ 2 ]
        Project Directory Kerberos [ 10593 ] ApacheDS [ 12310260 ]
        Alex Karasulu made changes -
        Field Original Value New Value
        Fix Version/s 0.4.0 [ 11007 ]
        Enrique Rodriguez created issue -

          People

          • Assignee:
            Enrique Rodriguez
            Reporter:
            Enrique Rodriguez
          • Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

            • Due:
              Created:
              Updated:

              Development