[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Heimda ldap and KDCFlags
Hi,
Using heimdal with ldap support, it creates entries in ldap like:
dn: cn=kadmin/admin@abc.com,cn=kerberos,dc=abc,dc=com
objectClass: top
objectClass: person
objectClass: krb5Principal
objectClass: krb5KDCEntry
krb5PrincipalName: kadmin/admin@ABC.COM
krb5MaxLife: 3600
krb5MaxRenew: 3600
cn: kadmin/admin@abc.com
sn: kadmin/admin@abc.com
krb5KDCFlags: 382
krb5KeyVersionNumber: 2
In the RFC 1510 - The Kerberos Network Authentication Service (V5),
especifies kdc flags like :
Bit(s) Name Description
0 RESERVED
1 FORWARDABLE
2 FORWARDED
3 PROXIABLE
4 PROXY
5 ALLOW-POSTDATE
6 POSTDATED
7 UNUSED
8 RENEWABLE
9-26 RESERVED
27 RENEWABLE-OK
28 ENC-TKT-IN-SKEY
29 RESERVED
30 RENEW
31 VALIDATE
But looking the entries, i see flags like 126, 382, 242 and 639.
How can i understand what this flags means?
--
<+====================================================+>
.~. Gessy Caetano da Silva Júnior
/ v \ Laboratório de Computação Científica
/( )\ LCC/CENAPAD Tel: 3499-5389
^^-^^ Universidade Federal de Minas Gerais
GNU/Linux
<+====================================================+>