Hao Chen
Reputation: 11
How could impersonate in kerberos?
I have an user Jake, and two Server A and B in a kerberos realm, after Jake authenticates to Server A, I want Server A impersonates Jake to connect Server B and do something.
My question is how could I configure or implement Server A to impersonate the user who has been authenticated and connected to it?
Any advice is appreciate!
Upvotes: 1
Views: 1002
Answers (1)
tellisnz
Reputation: 568
What you're after is Kerberos Constrained Delegation. I have an example working for a java Spring Boot application using spring security kerberos (with a few tweaks) and Active Directory here.
Upvotes: 1
Related Questions
- How to impersonate or delegate on kerberos with python?
- How to "un-impersonate" (un-delegate?) in Kerberos
- Impersonation and Delegation
- Programmatic Impersonation Delegation For Remote Resources (Double-Hop)
- Impersonate a user at runtime in Kerberos Secured Hadoop Cluster
- Kerberos, delegation and how to do this correctly?
- Kerberos Credential Delegation
- asp.net impersonation to alter active directory objects
- Kerberos authentication for delegation in IIS 7.0
- Impersonate with Delegation or More than one hop on Kerberos? Completely lost