Uploaded image for project: 'Slider'
  1. Slider
  2. SLIDER-1057

Kdiag: dump and tell if AES 256 is enabled or not

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • Slider 0.91
    • None
    • None

    Description

      This would improve Kdiag tool allowing it to dump relevant information and tell if AES 256 is enabled or not on the host. If not, prompt users to install the JCE Policy File according to JCE Unlimited Strength Jurisdiction Policy File. This is important because a common issue when deploying Kerberos is, AES-256 encryption type is configure and used in krb5.conf, but in JRE AES-256 isn't enabled by default in a typical Oracle Java installation.

      Attachments

        Issue Links

          is related to

          Improvement - An improvement or enhancement to an existing feature or task. SLIDER-1035 Kdiag enhancements

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              stevel@apache.org Steve Loughran
              drankye Kai Zheng
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: