Differences in Novell Kerberos KDC
To understand Novell Kerberos KDC, let us look at some of the differences between Novell Kerberos KDC and Kerberos.
- Allows eDirectory access through LDAP.
- Allows OpenSSL and NICI to be plugged in
- Tight integration of Kerberos and eDirectory identities, including a single password by means of universal password.
- Separate Password server instead of the Administration server playing that role.
- Modifications to kadmin for eDirectory integration. kadmin.local works with the LDAP server and not on the local database.
- Modifications to kdb5_util to work with eDirectory.
- No change to clients, such as kinit and kpasswd.
- Additions to the kdb5.conf configuration file to include eDirectory configuration.
- Multi-threading of KDC and implementation of LDAP reconnection mechanism to improve performance, reliability, and scalability.