Uploaded image for project: 'C Driver'
  1. C Driver
  2. CDRIVER-2536

Cannot auth with MIT Kerberos if rdns=false is in krb5.conf

XMLWordPrintableJSON

    • Type: Icon: Task Task
    • Resolution: Unresolved
    • Priority: Icon: Minor - P4 Minor - P4
    • None
    • Affects Version/s: None
    • Component/s: auth
    • None

      On Ubuntu with Cyrus SASL and MIT Kerberos, if I put the following in /etc/krb5.conf:

      [libdefaults]
    rdns = false

      ... then the C Driver cannot authenticate to our Kerberos test server. This seems true whether I use the server's hostname or IP address in the URI, and whether I set CANONICALIZE_HOST_NAME to true or false. Is this expected, or is there a bug in _mongoc_sasl_get_canonicalized_name?

            Assignee:
            Unassigned Unassigned
            Reporter:
            jesse@mongodb.com A. Jesse Jiryu Davis
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated: