Cannot auth with MIT Kerberos if rdns=false is in krb5.conf

XMLWordPrintableJSON

    • Type: Task
    • Resolution: Unresolved
    • Priority: Minor - P4
    • None
    • Affects Version/s: None
    • Component/s: auth
    • None
    • None
    • None
    • None
    • None
    • None
    • None

      On Ubuntu with Cyrus SASL and MIT Kerberos, if I put the following in /etc/krb5.conf:

      [libdefaults]
    rdns = false

      ... then the C Driver cannot authenticate to our Kerberos test server. This seems true whether I use the server's hostname or IP address in the URI, and whether I set CANONICALIZE_HOST_NAME to true or false. Is this expected, or is there a bug in _mongoc_sasl_get_canonicalized_name?

            Assignee:
            Unassigned
            Reporter:
            A. Jesse Jiryu Davis
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated: