Kerberos logins with Brave on Linux

My primary browser flips back and forth between Brave and Firefox depending on my current tasks, but kerberos logins are integral to my workflow at work and also as a Fedora contributor. Kerberos provides a single sign on (SSO) capability so you can authenticate one time and then perform lots of actions against various targets without authenticating again. Kerberos is a protocol that runs something like this: You authenticate to an authentication server with username/password/2FA That server forwards the authentication result to a key server That key server gives you a ticket From then on, you present your ticket to complete the authentication steps....

2021-12-18 · 3 min · Major Hayden

The Kerberos-hater’s guide to installing Kerberos

As promised in my earlier post entitled Kerberos for haters, I’ve assembled the simplest possible guide to get Kerberos up an running on two CentOS 5 servers. Also, I don’t really hate Kerberos. It’s a bit of an inside joke with my coworkers who are studying for some of the RHCA exams at Rackspace. The additional security provided by Kerberos is quite good but the setup involves a lot of small steps....

2012-02-05 · 6 min · Major Hayden

Kerberos for haters

I’ll be the first one to admit that Kerberos drives me a little insane. It’s a requirement for two of the exams in Red Hat’s RHCA certification track and I’ve been forced to learn it. It provides some pretty nice security features for large server environments. You get central single sign ons, encrypted authentication, and bidirectional validation. However, getting it configured can be a real pain due to some rather archaic commands and shells....

2012-02-03 · 4 min · Major Hayden