Reputation: 852
When using Sasl.createSaslClient with kerberos, is it possible to modify kerberose configuration options?
I would like to use non-default location for ticket cache. Is it possible to set this value? I checked Krb5LoginModule and it allows for such configuration, but I could not find anything related to Sasl clients.
Any help with this regard will be highly appreciated.
Upvotes: 2
Views: 292
Answers (2)
Reputation: 852
I found out that if you set KRB5CCNAME environment variable, Kerberos component which SASL client delegates work to, read ticket cache file name/path from this env variable. It resolved my problem.
Upvotes: 1
Reputation: 18415
You cannot do that with the SASL client because SASL is delegating the work to JGSS. What you can you is to obtain a login context with your custom location and perform a Subject.doAs with the subject from the login context with the SASL client. This will give you what you want. (Sample code available)
Upvotes: 0
Related Questions
- SASL bind over GSSAPI using Kerberos credentials the with ldap_sasl_bind_s function
- Kerberos JAAS with Service name
- How to obtain a kerberos service ticket via GSS-API?
- Configure kerberos without krb5.conf
- Kerberos/SPNEGO server side auth change in Java8
- GSSException createCredential
- How can i enable/disable kerberos authentication in grails application with single code base?
- Kerberos with Java
- How do I interact with a kerberos server from my own application
- Java/C# Kerberos inter-op possible?